Alternatives and similar repositories for grc

Users that are interested in grc are comparing it to the libraries listed below

• GovReady / hyperGRC
  hyperGRC is a lightweight, in-browser tool for managing compliance-as-code repositories in OpenControl format.
  ☆27Updated 4 years ago
• GovReady / compliancelib-python
  Machine readable cybersecurity compliance standards library for Python, starting with FISMA and NIST Risk Management Framework
  ☆63Updated 5 years ago
• GovReady / govready-q
  An open source, self-service GRC tool to automate security assessments and compliance.
  ☆204Updated last year
• brian-ruf / OSCAL-GUI
  Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI
  ☆47Updated 6 years ago
• kindlyops / havengrc
  ☁️Haven GRC - easier governance, risk, and compliance 👨‍⚕️👮‍♀️🦸‍♀️🕵️‍♀️👩‍🔬
  ☆103Updated 4 years ago
• counteractive / security-controls
  ☆49Updated 2 years ago
• digitorus / eramba
  Dockerized Eramba, Open Source Governance, Risk & Compliance (GRC) system https://hub.docker.com/r/digitorus/er…
  ☆31Updated 6 years ago
• CISecurity / ControlsAssessmentSpecification
  Controls Assessment Specification
  ☆70Updated 10 months ago
• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆55Updated 2 months ago
• deepanshusood / SANS-Security-Policy-Templates
  SANS has developed a set of information security policy templates. These are free to use and fully customizable to your company's IT secu…
  ☆54Updated 4 years ago
• magoo / minimalist-risk-management
  A minimalist risk management program!
  ☆151Updated 3 years ago
• MISP / misp-compliance
  Legal, procedural and policies document templates for operating MISP and information sharing communities
  ☆38Updated 3 years ago
• monarc-project / MonarcAppFO
  MONARC - Method for an Optimised aNAlysis of Risks by @NC3-LU
  ☆118Updated this week
• Cingulara / openrmf-docs
  Documentation on the OpenRMF application, including scripts to run the whole stack as well as just infrastructure with documentation on u…
  ☆150Updated 2 months ago
• ansorren / GDPatrol
  A Lambda-powered Security Orchestration framework for AWS GuardDuty
  ☆53Updated 6 years ago
• risk-redux / control_freak
  NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations
  ☆40Updated 3 months ago
• carlota / showmethemoney
  These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…
  ☆77Updated 4 months ago
• opencybersecurityalliance / kestrel-jupyter
  Kestrel Jupyter Notebook Kernel
  ☆10Updated 2 years ago
• tiburon-security / sriracha-iq
  Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…
  ☆18Updated 5 years ago
• CISOfy / cisofy-security-policy
  This is the public security policy of CISOfy, with extra resources like security tools.
  ☆92Updated 5 years ago
• dogoncouch / LogESP
  Open Source SIEM (Security Information and Event Management system).
  ☆219Updated 2 years ago
• w8mej / ThreatPlays
  Sharing Threat Hunting runbooks
  ☆25Updated 6 years ago
• oracuk / oisru
  Repository for the Open Information Security Risk Universe
  ☆64Updated 3 years ago
• usnistgov / sctools
  Tools for security content automation, baseline tailoring, and overlay development.
  ☆45Updated last year
• simplerisk / docker
  SimpleRisk Docker Repository
  ☆37Updated last week
• Shuffle / workflows
  Workflows for Shuffle
  ☆24Updated 3 years ago
• sonofagl1tch / AWSDetonationLab
  This script is used to generate some basic detections of the aws security services
  ☆72Updated 3 years ago
• OTRF / OSSEM-CDM
  OSSEM Common Data Model
  ☆56Updated 3 years ago
• usnistgov / CloudSecurityArchitectureTool-CSAT-v0.1
  ☆21Updated last year
• GovReady / nist-sp-800-53-r5-data
  NIST SP 800-53 Rev 5 as Data
  ☆25Updated 5 years ago