oscal-compass / compliance-trestleLinks
An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.
☆206Updated last week
Alternatives and similar repositories for compliance-trestle
Users that are interested in compliance-trestle are comparing it to the libraries listed below
Sorting:
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.☆176Updated 2 months ago
- FedRAMP Automation☆343Updated 5 months ago
- A library of React components and an example user interface application that provides a direct UI into NIST's Open Security Controls Asse…☆60Updated last year
- Various deployments of the OSCAL editor☆46Updated last year
- An initial OpenAPI definition of an OSCAL REST API.☆39Updated last year
- NIST SP 800-53 content and other OSCAL content examples☆377Updated 2 weeks ago
- A simple open source command line tool to support common operations over OSCAL content.☆54Updated last month
- Open source tool for processing OSCAL based FedRAMP SSPs☆42Updated 11 months ago
- A repository containing OSCAL serializations of the CIS Critical Security Controls☆55Updated 6 months ago
- Demo setup for compliance-trestle☆35Updated last week
- Tools for the OSCAL project☆36Updated 2 years ago
- The Compliance Validator☆184Updated 2 weeks ago
- Open Security Controls Assessment Language (OSCAL)☆781Updated last week
- Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI☆44Updated 5 years ago
- A workflow automation tool for compliance content authoring☆17Updated this week
- The Auditree framework tool to run compliance control checks as unit tests.☆71Updated last year
- Automatically generated diagrams for OSCAL models☆20Updated 3 years ago
- A Java library to support processing OSCAL content☆34Updated last week
- The community area and documents about Code of Conduct.☆18Updated 4 years ago
- This repository is a collection of resources to help facilitate compliance innovation utilizing Cloud, DevSecOps and Software Factory tec…☆73Updated last year
- ☆16Updated last year
- Automate the creation of a System Security Plan (SSP)☆40Updated 3 months ago
- Scripts to import OSCAL example content into the Neo4J graph database☆29Updated 2 years ago
- A case study for ACSAC 2022 utilizing OSCAL with a custom GitHub action to automate assessments.☆23Updated 2 years ago
- Heimdall Enterprise Server 2 lets you view, store, and compare automated security control scan results.☆235Updated this week
- FINOS Common Cloud Controls☆64Updated this week
- An open source, self-service GRC tool to automate security assessments and compliance.☆194Updated 9 months ago
- Generate a score for your sbom to understand if it will actually be useful.☆233Updated last year
- Our objective is to enable open source maintainers, contributors and end-users to understand and make decisions on the provenance of the …☆189Updated last year
- A compliance analysis tool which enables organizations to more quickly articulate their compliance posture and also generate supporting e…☆48Updated last week