Alternatives and similar repositories for comply

Users that are interested in comply are comparing it to the libraries listed below

• JupiterOne / security-policy-templates
  A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.
  ☆329Updated last year
• bmarsh9 / gapps
  Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking
  ☆618Updated 3 months ago
• turbot / steampipe-mod-aws-compliance
  Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe …
  ☆404Updated last week
• matanolabs / matano
  Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
  ☆1,624Updated 9 months ago
• jonrau1 / ElectricEye
  ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring su…
  ☆1,021Updated last week
• tailscale / security-policies
  Security policies for Tailscale
  ☆305Updated last month
• salesforce / policy_sentry
  IAM Least Privilege Policy Generator
  ☆2,118Updated last week
• salesforce / cloudsplaining
  Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…
  ☆2,147Updated this week
• Netflix / repokid
  AWS Least Privilege for Distributed, High-Velocity Deployment
  ☆1,140Updated 2 years ago
• google / vsaq
  VSAQ is an interactive questionnaire application to assess the security programs of third parties.
  ☆856Updated 4 years ago
• opencontrol / compliance-masonry
  Security Documentation Builder
  ☆370Updated 2 years ago
• usnistgov / OSCAL
  Open Security Controls Assessment Language (OSCAL)
  ☆799Updated this week
• PagerDuty / incident-response-docs
  PagerDuty's Incident Response Documentation.
  ☆1,033Updated 10 months ago
• slackhq / goSDL
  goSDL
  ☆522Updated 2 years ago
• TristanToye / SOC2-guide
  Documenting SOC 2 tools and processes
  ☆93Updated 3 years ago
• JupiterOne / security-policy-builder
  CLI for generating policies, standards and control procedures (PSP) documentation in Markdown and publishing to JupiterOne or Confluence
  ☆89Updated last year
• gjyoung1974 / soc2-policy-templates
  Template SOC2 Policy Authority - documentation pipeline
  ☆132Updated 5 years ago
• OpenCSPM / opencspm
  Open Cloud Security Posture Management Engine
  ☆342Updated 3 years ago
• dowjones / hammer
  Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)
  ☆444Updated 2 years ago
• tmobile / pacbot
  PacBot (Policy as Code Bot)
  ☆1,304Updated 2 years ago
• monzo / response
  Monzo's real-time incident response and reporting tool ⚡️
  ☆1,545Updated last year
• PagerDuty / security-training
  Public version of PagerDuty's employee security training courses.
  ☆414Updated 2 years ago
• aws-samples / aws-incident-response-playbooks
  ☆1,027Updated 2 months ago
• duo-labs / cloudtracker
  CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.
  ☆901Updated 3 years ago
• GovReady / govready-q
  An open source, self-service GRC tool to automate security assessments and compliance.
  ☆195Updated 10 months ago
• z0ph / aws-security-toolbox
  AWS Security Tools (AST) in a simple Docker container.
  ☆285Updated 4 years ago
• ocsf / ocsf-schema
  OCSF Schema
  ☆737Updated last week
• cartography-cncf / cartography
  Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powere…
  ☆3,612Updated this week
• Arudjreis / awesome-security-GRC
  Curated list of resources for security Governance, Risk Management, Compliance and Audit professionals and enthusiasts (if they exist).
  ☆928Updated 2 months ago
• magoo / minimalist-risk-management
  A minimalist risk management program!
  ☆145Updated 3 years ago