strongdm / comply
Compliance automation framework, focused on SOC2
☆1,356Updated 2 years ago
Alternatives and similar repositories for comply:
Users that are interested in comply are comparing it to the libraries listed below
- A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.☆313Updated 9 months ago
- Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking. https://gapps…☆521Updated 2 months ago
- IAM Least Privilege Policy Generator☆2,061Updated last month
- Security Documentation Builder☆359Updated last year
- Template SOC2 Policy Authority - documentation pipeline☆108Updated 4 years ago
- ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring su…☆985Updated last month
- Security policies for Tailscale☆285Updated 2 months ago
- Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…☆2,059Updated 3 weeks ago
- Open Security Controls Assessment Language (OSCAL)☆717Updated 2 weeks ago
- CLI for generating policies, standards and control procedures (PSP) documentation in Markdown and publishing to JupiterOne or Confluence☆85Updated 10 months ago
- AWS Least Privilege for Distributed, High-Velocity Deployment☆1,130Updated last year
- NIST SP 800-53 content and other OSCAL content examples☆333Updated last week
- VSAQ is an interactive questionnaire application to assess the security programs of third parties.☆850Updated 4 years ago
- FedRAMP Automation☆319Updated this week
- CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.☆893Updated 3 years ago
- ☆967Updated 3 months ago
- AWS IAM linting library☆1,069Updated 2 weeks ago
- An open source, self-service GRC tool to automate security assessments and compliance.☆187Updated 3 months ago
- Curated list of resources for security Governance, Risk Management, Compliance and Audit professionals and enthusiasts (if they exist).☆692Updated 3 weeks ago
- Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe …☆384Updated this week
- Security auditing tool for AWS environments☆1,728Updated 6 years ago
- Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS☆1,525Updated 2 months ago
- Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)☆437Updated last year
- A tool for quickly evaluating IAM permissions in AWS.☆1,469Updated 7 months ago
- Open source templates you can use to bootstrap your security programs☆822Updated last month
- Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS F…☆1,163Updated 8 months ago
- Open Cloud Security Posture Management Engine☆338Updated 3 years ago
- AWS Security Tools (AST) in a simple Docker container.☆287Updated 3 years ago
- Documenting SOC 2 tools and processes☆78Updated 3 years ago
- ☆617Updated 3 weeks ago