riski-io / grc
An open source Governance Risk Compliance (GRC) solution for corporates and government
☆27Updated 7 years ago
Alternatives and similar repositories for grc:
Users that are interested in grc are comparing it to the libraries listed below
- hyperGRC is a lightweight, in-browser tool for managing compliance-as-code repositories in OpenControl format.☆24Updated 3 years ago
- Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI☆43Updated 5 years ago
- ☆44Updated 2 years ago
- ☆19Updated 8 months ago
- Core incident handling plugins for aws_ir cli, incident pony, and more.☆21Updated 6 years ago
- NIST SP 800-53 Rev 5 as Data☆23Updated 4 years ago
- OSCAL SSP content for technologies shipped by Red Hat☆15Updated 2 years ago
- Machine readable cybersecurity compliance standards library for Python, starting with FISMA and NIST Risk Management Framework☆59Updated 4 years ago
- NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations☆38Updated 2 months ago
- Controls Assessment Specification☆69Updated last week
- Kestrel Jupyter Notebook Kernel☆9Updated last year
- Tools for security content automation, baseline tailoring, and overlay development.☆43Updated 6 months ago
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆53Updated last year
- NIST 800-53 Baseline Configuration Tool☆9Updated 6 months ago
- An open source, self-service GRC tool to automate security assessments and compliance.☆186Updated 3 months ago
- Tools for the OSCAL project☆35Updated last year
- A collection of security related user stories compatible with NIST Special Publication 800-53☆35Updated 7 years ago
- Landing Page Content/Builder for MITRE Security Automation Framework☆28Updated 2 weeks ago
- ☁️Haven GRC - easier governance, risk, and compliance 👨⚕️👮♀️🦸♀️🕵️♀️👩🔬☆100Updated 3 years ago
- ☆15Updated 3 years ago
- A curated threat modeling library collection☆22Updated last year
- Implementation of the OSCAL REST API☆19Updated last year
- Dockerized Eramba, Open Source Governance, Risk & Compliance (GRC) system https://hub.docker.com/r/digitorus/er…☆29Updated 5 years ago
- A Java library for programmatically calculating OWASP Risk Rating scores☆18Updated last year
- NIST OSCAL SDK and CLI☆38Updated 4 years ago
- S3Insights is a platform for efficiently deriving security insights about S3 data through metadata analysis☆12Updated this week
- Tool to check compliance with CIS Linux Benchmarks, specifically Distribution Independent, Debian 9 and Ubuntu 18.04 LTS, and generate sp…☆24Updated 4 years ago
- Various deployments of the OSCAL editor☆46Updated 7 months ago
- A Crowdsourcing Exchange for mapping various sources of security vulnerabilities, exposures, threats, and controls data☆26Updated 5 years ago
- Legal, procedural and policies document templates for operating MISP and information sharing communities☆37Updated 2 years ago