strongdm / comply
Compliance automation framework, focused on SOC2
☆1,346Updated 2 years ago
Alternatives and similar repositories for comply:
Users that are interested in comply are comparing it to the libraries listed below
- A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.☆306Updated 8 months ago
- Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking. https://gapps…☆508Updated last month
- VSAQ is an interactive questionnaire application to assess the security programs of third parties.☆851Updated 4 years ago
- Security Documentation Builder☆355Updated last year
- Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe …☆380Updated this week
- goSDL☆525Updated 2 years ago
- ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring su…☆976Updated this week
- Template SOC2 Policy Authority - documentation pipeline☆108Updated 4 years ago
- Open Security Controls Assessment Language (OSCAL)☆702Updated last week
- IAM Least Privilege Policy Generator☆2,054Updated 2 weeks ago
- Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)☆436Updated last year
- Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.☆1,149Updated 2 years ago
- Graph-based security analysis for everyone☆342Updated last year
- Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…☆2,045Updated this week
- Documenting SOC 2 tools and processes☆76Updated 3 years ago
- CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.☆892Updated 3 years ago
- CLI for generating policies, standards and control procedures (PSP) documentation in Markdown and publishing to JupiterOne or Confluence☆85Updated 8 months ago
- NIST SP 800-53 content and other OSCAL content examples☆322Updated this week
- Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powere…☆3,167Updated last week
- Open Cloud Security Posture Management Engine☆337Updated 3 years ago
- A tool for quickly evaluating IAM permissions in AWS.☆1,453Updated 6 months ago
- AWS Least Privilege for Distributed, High-Velocity Deployment☆1,128Updated last year
- AWS Security Tools (AST) in a simple Docker container.☆287Updated 3 years ago
- Security policies for Tailscale☆281Updated last month
- Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS☆1,509Updated last month
- An AWS tool to help you create a point in time assessment of your AWS account using Prowler.☆529Updated this week
- PagerDuty's Incident Response Documentation.☆1,025Updated last month
- ☆954Updated 2 months ago
- A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure☆683Updated last year
- Public version of PagerDuty's employee security training courses.☆412Updated last year