Alternatives and similar repositories for grc

Users that are interested in grc are comparing it to the libraries listed below

• brian-ruf / OSCAL-GUI
  Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI
  ☆44Updated 5 years ago
• GovReady / hyperGRC
  hyperGRC is a lightweight, in-browser tool for managing compliance-as-code repositories in OpenControl format.
  ☆25Updated 3 years ago
• kindlyops / havengrc
  ☁️Haven GRC - easier governance, risk, and compliance 👨‍⚕️👮‍♀️🦸‍♀️🕵️‍♀️👩‍🔬
  ☆102Updated 4 years ago
• GovReady / compliancelib-python
  Machine readable cybersecurity compliance standards library for Python, starting with FISMA and NIST Risk Management Framework
  ☆62Updated 5 years ago
• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆54Updated last year
• GovReady / govready-q
  An open source, self-service GRC tool to automate security assessments and compliance.
  ☆192Updated 7 months ago
• counteractive / security-controls
  ☆48Updated 2 years ago
• digitorus / eramba
  Dockerized Eramba, Open Source Governance, Risk & Compliance (GRC) system https://hub.docker.com/r/digitorus/er…
  ☆30Updated 5 years ago
• opencybersecurityalliance / kestrel-jupyter
  Kestrel Jupyter Notebook Kernel
  ☆9Updated last year
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆77Updated 4 years ago
• usnistgov / oscal-tools
  Tools for the OSCAL project
  ☆37Updated 2 years ago
• OTRF / OSSEM-CDM
  OSSEM Common Data Model
  ☆56Updated 2 years ago
• ansorren / GDPatrol
  A Lambda-powered Security Orchestration framework for AWS GuardDuty
  ☆52Updated 5 years ago
• ComplianceAsCode / oscal
  OSCAL SSP content for technologies shipped by Red Hat
  ☆15Updated 2 years ago
• usnistgov / sctools
  Tools for security content automation, baseline tailoring, and overlay development.
  ☆44Updated 11 months ago
• CISecurity / ControlsAssessmentSpecification
  Controls Assessment Specification
  ☆70Updated 3 months ago
• sonofagl1tch / AWSDetonationLab
  This script is used to generate some basic detections of the aws security services
  ☆71Updated 3 years ago
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆34Updated last month
• tiburon-security / sriracha-iq
  Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…
  ☆18Updated 5 years ago
• ThreatResponse / aws_ir_plugins
  Core incident handling plugins for aws_ir cli, incident pony, and more.
  ☆21Updated 7 years ago
• devsecops / wardley-maps
  A repository for wardley maps related to security topics.
  ☆46Updated 8 years ago
• twilio-labs / socless
  The SOCless automation framework
  ☆140Updated 5 months ago
• risk-redux / control_freak
  NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations
  ☆40Updated last month
• Shuffle / workflows
  Workflows for Shuffle
  ☆23Updated 2 years ago
• opencybersecurityalliance / ontology
  The OpenDXL Ontology project is focused on the development of an open and interoperable cybersecurity messaging format for use with the O…
  ☆76Updated 4 years ago
• CityBaseInc / SIAC
  SIAC is an enterprise SIEM built on open-source technology.
  ☆115Updated 6 years ago
• jonrau1 / SyntheticSun
  SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, man…
  ☆78Updated 4 years ago
• mitre / heimdall_tools
  DEPRECATED: A set of utilities for converting and working with compliance data for viewing in the heimdall applications
  ☆35Updated 3 years ago
• oracuk / oisru
  Repository for the Open Information Security Risk Universe
  ☆64Updated 3 years ago
• usnistgov / CloudSecurityArchitectureTool-CSAT-v0.1
  ☆21Updated last year