Alternatives and similar repositories for comply

Users that are interested in comply are comparing it to the libraries listed below

• JupiterOne / security-policy-templates
  A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.
  ☆320Updated last year
• bmarsh9 / gapps
  Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking
  ☆591Updated last month
• salesforce / policy_sentry
  IAM Least Privilege Policy Generator
  ☆2,106Updated last week
• salesforce / cloudsplaining
  Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…
  ☆2,110Updated this week
• turbot / steampipe-mod-aws-compliance
  Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe …
  ☆398Updated this week
• google / vsaq
  VSAQ is an interactive questionnaire application to assess the security programs of third parties.
  ☆854Updated 4 years ago
• matanolabs / matano
  Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
  ☆1,601Updated 7 months ago
• opencontrol / compliance-masonry
  Security Documentation Builder
  ☆367Updated last year
• jonrau1 / ElectricEye
  ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring su…
  ☆1,001Updated 2 weeks ago
• tailscale / security-policies
  Security policies for Tailscale
  ☆298Updated 3 months ago
• PagerDuty / incident-response-docs
  PagerDuty's Incident Response Documentation.
  ☆1,029Updated 7 months ago
• TristanToye / SOC2-guide
  Documenting SOC 2 tools and processes
  ☆84Updated 3 years ago
• Netflix / repokid
  AWS Least Privilege for Distributed, High-Velocity Deployment
  ☆1,141Updated 2 years ago
• dowjones / hammer
  Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)
  ☆442Updated 2 years ago
• OpenCSPM / opencspm
  Open Cloud Security Posture Management Engine
  ☆342Updated 3 years ago
• usnistgov / OSCAL
  Open Security Controls Assessment Language (OSCAL)
  ☆765Updated this week
• slackhq / goSDL
  goSDL
  ☆523Updated 2 years ago
• JupiterOne / security-policy-builder
  CLI for generating policies, standards and control procedures (PSP) documentation in Markdown and publishing to JupiterOne or Confluence
  ☆85Updated last year
• cartography-cncf / cartography
  Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powere…
  ☆3,516Updated this week
• aws-samples / aws-incident-response-playbooks
  ☆1,006Updated 7 months ago
• Arudjreis / awesome-security-GRC
  Curated list of resources for security Governance, Risk Management, Compliance and Audit professionals and enthusiasts (if they exist).
  ☆757Updated 3 months ago
• panther-labs / panther-analysis
  Built-in Panther detection rules and policies
  ☆407Updated last week
• ocsf / ocsf-schema
  OCSF Schema
  ☆712Updated last week
• GovReady / govready-q
  An open source, self-service GRC tool to automate security assessments and compliance.
  ☆192Updated 8 months ago
• magoo / minimalist-risk-management
  A minimalist risk management program!
  ☆136Updated 3 years ago
• usnistgov / oscal-content
  NIST SP 800-53 content and other OSCAL content examples
  ☆370Updated this week
• gjyoung1974 / soc2-policy-templates
  Template SOC2 Policy Authority - documentation pipeline
  ☆116Updated 4 years ago
• duo-labs / cloudtracker
  CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.
  ☆901Updated 3 years ago
• tmobile / pacbot
  PacBot (Policy as Code Bot)
  ☆1,300Updated 2 years ago
• PagerDuty / security-training
  Public version of PagerDuty's employee security training courses.
  ☆416Updated 2 years ago