strongdm / comply
Compliance automation framework, focused on SOC2
☆1,373Updated 2 years ago
Alternatives and similar repositories for comply:
Users that are interested in comply are comparing it to the libraries listed below
- A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.☆313Updated 10 months ago
- Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking. https://gapps…☆531Updated 3 months ago
- ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring su…☆988Updated 2 months ago
- IAM Least Privilege Policy Generator☆2,073Updated 3 weeks ago
- goSDL☆525Updated 2 years ago
- Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe …☆387Updated this week
- Security Documentation Builder☆360Updated last year
- Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS☆1,551Updated 3 months ago
- Template SOC2 Policy Authority - documentation pipeline☆110Updated 4 years ago
- Security policies for Tailscale☆288Updated this week
- Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…☆2,074Updated 3 weeks ago
- Open Security Controls Assessment Language (OSCAL)☆735Updated last week
- Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)☆439Updated last year
- A flexible control server for osquery fleets☆1,105Updated 4 years ago
- PagerDuty's Incident Response Documentation.☆1,026Updated 3 months ago
- AWS Least Privilege for Distributed, High-Velocity Deployment☆1,133Updated last year
- CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.☆896Updated 3 years ago
- Documenting SOC 2 tools and processes☆79Updated 3 years ago
- A command-line tool to get valuable information out of AWS CloudTrail☆814Updated this week
- Open Cloud Security Posture Management Engine☆339Updated 3 years ago
- ☆977Updated 4 months ago
- Built-in Panther detection rules and policies☆374Updated this week
- AWS IAM linting library☆1,073Updated this week
- A graph-based tool for visualizing effective access and resource relationships in AWS environments.☆947Updated 2 years ago
- Public version of PagerDuty's employee security training courses.☆415Updated last year
- CLI for generating policies, standards and control procedures (PSP) documentation in Markdown and publishing to JupiterOne or Confluence☆84Updated 10 months ago
- Production-ready detection & response queries for osquery☆564Updated this week
- Security auditing tool for AWS environments☆1,730Updated 6 years ago
- Boilerplate Incident Response Plan from "Starting Up Security"☆163Updated 4 years ago
- Graph-based security analysis for everyone☆344Updated last year