Compliance automation framework, focused on SOC2
☆1,560Jul 21, 2022Updated 3 years ago
Alternatives and similar repositories for comply
Users that are interested in comply are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking☆682May 20, 2026Updated last month
- Template SOC2 Policy Authority - documentation pipeline☆141Sep 23, 2020Updated 5 years ago
- A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.☆347Feb 19, 2026Updated 4 months ago
- ☁️Haven GRC - easier governance, risk, and compliance 👨⚕️👮♀️🦸♀️🕵️♀️👩🔬☆107Jun 14, 2021Updated 5 years ago
- Curated list of resources for security Governance, Risk Management, Compliance and Audit professionals and enthusiasts (if they exist).☆1,053Sep 7, 2025Updated 9 months ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- A minimalist risk management program!☆154Aug 10, 2022Updated 3 years ago
- Security Documentation Builder☆382Feb 16, 2026Updated 4 months ago
- CISO Assistant is a one-stop-shop GRC platform for Risk Management, AppSec, Compliance & Audit, TPRM, BIA, Privacy, and Reporting. It sup…☆4,209Updated this week
- Prowler is the world’s most widely used open-source cloud security platform that automates security and compliance across any cloud envir…☆14,067Updated this week
- hyperGRC is a lightweight, in-browser tool for managing compliance-as-code repositories in OpenControl format.☆29Jan 19, 2022Updated 4 years ago
- CLI for generating policies, standards and control procedures (PSP) documentation in Markdown and publishing to JupiterOne or Confluence☆88Feb 19, 2026Updated 4 months ago
- SOC 2 should be easy to get done and it should be inexpensive. Here's everything you wanted to know.☆57Jun 25, 2026Updated last week
- List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.☆9,470Apr 17, 2026Updated 2 months ago
- Security policies for Tailscale☆322Feb 27, 2026Updated 4 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe …☆413Mar 25, 2026Updated 3 months ago
- Documenting SOC 2 tools and processes☆112Jan 19, 2022Updated 4 years ago
- Multi-Cloud Security Auditing Tool☆7,729Sep 23, 2025Updated 9 months ago
- IAM Least Privilege Policy Generator☆2,158Jun 22, 2026Updated last week
- A collection of awesome framework, libraries, documents, learning tutorials, resources about SOC 2 tools and processes.☆27Jan 30, 2022Updated 4 years ago
- cloud.gov security policies and procedures☆27Mar 5, 2026Updated 3 months ago
- CloudMapper helps you analyze your Amazon Web Services (AWS) environments.☆6,290Jul 15, 2024Updated last year
- An open source, self-service GRC tool to automate security assessments and compliance.☆217Dec 10, 2024Updated last year
- Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resour…☆6,017Updated this week
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- OpenControl-formatted industry standards and requirement documents☆51Aug 28, 2023Updated 2 years ago
- Open Security Controls Assessment Language (OSCAL)☆922Updated this week
- VSAQ is an interactive questionnaire application to assess the security programs of third parties.☆861Jan 11, 2021Updated 5 years ago
- Cartography is a Python tool that pulls infrastructure assets and their relationships into a Neo4j graph database.☆3,942Jun 27, 2026Updated last week
- Open Source Data Protection/Privacy Regulatory Mapping Project☆195Jun 11, 2023Updated 3 years ago
- Useful templates and working document for implementing ISO 27001 - ISMS☆228Mar 30, 2026Updated 3 months ago
- The Auditree framework tool to run compliance control checks as unit tests.☆74Aug 20, 2024Updated last year
- Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.☆1,172Dec 8, 2022Updated 3 years ago
- Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.☆5,207Nov 20, 2025Updated 7 months ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS☆1,681Jan 8, 2025Updated last year
- Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and sys…☆15,849Jun 25, 2026Updated last week
- Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…☆2,233Jun 21, 2026Updated 2 weeks ago
- ☆48Feb 22, 2023Updated 3 years ago
- CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.☆912Dec 17, 2021Updated 4 years ago
- Oxomium is a cybersecurity gouvernance and conformity (GRC) tool for CISCO and SECOPS. By linking framework requirements, controld schedu…☆18Jun 22, 2026Updated last week
- Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frame…☆224Jun 2, 2026Updated last month