riski-io / grc
An open source Governance Risk Compliance (GRC) solution for corporates and government
☆27Updated 7 years ago
Alternatives and similar repositories for grc:
Users that are interested in grc are comparing it to the libraries listed below
- hyperGRC is a lightweight, in-browser tool for managing compliance-as-code repositories in OpenControl format.☆24Updated 3 years ago
- NIST SP 800-53 Rev 5 as Data☆23Updated 4 years ago
- ☆44Updated 2 years ago
- Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI☆43Updated 5 years ago
- Dockerized Eramba, Open Source Governance, Risk & Compliance (GRC) system https://hub.docker.com/r/digitorus/er…☆29Updated 5 years ago
- Machine readable cybersecurity compliance standards library for Python, starting with FISMA and NIST Risk Management Framework☆59Updated 4 years ago
- NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations☆39Updated 2 months ago
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆53Updated last year
- Tool to check compliance with CIS Linux Benchmarks, specifically Distribution Independent, Debian 9 and Ubuntu 18.04 LTS, and generate sp…☆24Updated 4 years ago
- Controls Assessment Specification☆69Updated this week
- ☁️Haven GRC - easier governance, risk, and compliance 👨⚕️👮♀️🦸♀️🕵️♀️👩🔬☆100Updated 3 years ago
- Core incident handling plugins for aws_ir cli, incident pony, and more.☆21Updated 6 years ago
- A Crowdsourcing Exchange for mapping various sources of security vulnerabilities, exposures, threats, and controls data☆26Updated 5 years ago
- ☆19Updated 8 months ago
- OSCAL SSP content for technologies shipped by Red Hat☆15Updated 2 years ago
- Legal, procedural and policies document templates for operating MISP and information sharing communities☆37Updated 2 years ago
- ☆18Updated 3 years ago
- Sharing Threat Hunting runbooks☆25Updated 5 years ago
- Materials used by Product Management and Product Marketing☆12Updated 6 years ago
- SANS has developed a set of information security policy templates. These are free to use and fully customizable to your company's IT secu…☆38Updated 3 years ago
- Tools for the OSCAL project☆35Updated 2 years ago
- NIST 800-53 Baseline Configuration Tool☆9Updated 6 months ago
- A few quick recipes for those that do not have much time during the day☆22Updated 4 months ago
- Tools for security content automation, baseline tailoring, and overlay development.☆43Updated 6 months ago
- A Java library for programmatically calculating OWASP Risk Rating scores☆18Updated last year
- The OpenFISMA project is an open source application designed to reduce the complexity and automate the regulatory requirements of the Fed…☆10Updated 9 years ago
- Pulled the H-1 Table from the NIST SP 800-53 Rev. 4. Table maps applicable NIST controls to the ISO/IEC 27001 Controls☆18Updated 5 years ago
- A collection of security related user stories compatible with NIST Special Publication 800-53☆35Updated 8 years ago
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Updated 4 years ago
- Tools for AWS forensics☆63Updated 9 years ago