trevorbryant / awesome-controlsLinks
A collection of awesome security controls mapping for solutions across frameworks.
☆56Updated 5 years ago
Alternatives and similar repositories for awesome-controls
Users that are interested in awesome-controls are comparing it to the libraries listed below
Sorting:
- ☆48Updated 2 years ago
- NIST CyberSecurity Framework management tool☆166Updated 3 years ago
- An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)☆126Updated last year
- Controls Assessment Specification☆70Updated 6 months ago
- SANS has developed a set of information security policy templates. These are free to use and fully customizable to your company's IT secu…☆47Updated 3 years ago
- A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.☆63Updated 5 years ago
- Documentation on the Cyber Defense Matrix☆25Updated 2 years ago
- These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…☆73Updated 11 months ago
- A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.☆327Updated last year
- A repository containing OSCAL serializations of the CIS Critical Security Controls☆55Updated 6 months ago
- The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools…☆163Updated last week
- This GitHub page shows the CISO Tradecraft Podcast broken down by Topic☆133Updated this week
- read the docs version of risk management☆26Updated 2 years ago
- Documentation on the OpenRMF application, including scripts to run the whole stack as well as just infrastructure with documentation on u…☆147Updated last month
- Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI☆44Updated 5 years ago
- OWASP Foundation Web Respository☆31Updated 2 years ago
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆54Updated last year
- Maturity models help integrate traditionally separate organizational functions, set process improvement goals and priorities, provide gui…☆256Updated 3 months ago
- a curated list of useful threat modeling resources☆137Updated last year
- NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations☆40Updated this week
- Heimdall Enterprise Server 2 lets you view, store, and compare automated security control scan results.☆237Updated last week
- 🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…☆389Updated last year
- An open source, self-service GRC tool to automate security assessments and compliance.☆194Updated 10 months ago
- Cloud Analytics helps defenders detect attacks to their cloud infrastructure by developing behavioral analytics for cloud platforms as we…☆53Updated 2 years ago
- A MITRE ATT&CK Navigator export for AWS GuardDuty Findings☆138Updated 4 years ago
- ☆187Updated 2 weeks ago
- A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …☆191Updated last year
- CLI for generating policies, standards and control procedures (PSP) documentation in Markdown and publishing to JupiterOne or Confluence☆87Updated last year
- Security Control Knowledge Graph☆29Updated last year
- Cloud security tutorials and best practices☆38Updated 2 years ago