Topic: compliance Goto Github
Some thing interesting about compliance
Some thing interesting about compliance
compliance,HardeningKitty and Windows Hardening settings and configurations
User: 0x6d69636b
compliance,Security scanner for your Terraform code
Organization: aquasecurity
Home Page: https://aquasecurity.github.io/tfsec
compliance,Binary Analysis Next Generation (BANG)
User: armijnhemel
compliance,Curated list of resources for security Governance, Risk Management, Compliance and Audit professionals and enthusiasts (if they exist).
User: arudjreis
compliance,Guard offers a policy-as-code domain-specific language (DSL) to write rules and validate JSON- and YAML-formatted data such as CloudFormation Templates, K8s configurations, and Terraform JSON plans/configurations against those rules. Take this survey to provide feedback about cfn-guard: https://amazonmr.au1.qualtrics.com/jfe/form/SV_bpyzpfoYGGuuUl0
Organization: aws-cloudformation
compliance,Open-source infrastructure and data orchestration platform for risk decisioning
Organization: ballerine-io
Home Page: https://www.ballerine.com
compliance,Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
Organization: bearer
Home Page: https://docs.bearer.com
compliance,Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
Organization: bridgecrewio
Home Page: https://www.checkov.io/
compliance,Appshark is a static taint analysis platform to scan vulnerabilities in an Android app.
Organization: bytedance
compliance,Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Organization: cisofy
Home Page: https://cisofy.com/lynis/
compliance,Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources
Organization: cloud-custodian
Home Page: https://cloudcustodian.io
compliance,immudb - immutable database based on zero trust, SQL/Key-Value/Document model, tamperproof, data change history
Organization: codenotary
Home Page: https://immudb.io
compliance,Security automation content in SCAP, Bash, Ansible, and other formats
Organization: complianceascode
Home Page: https://complianceascode.readthedocs.io/en/latest/
compliance,Open source cloud native security observability platform. Linux, K8s, AWS Fargate and more.
Organization: deepfence
Home Page: https://deepfence.io
compliance,FOSSology is an open source license compliance software system and toolkit. As a toolkit you can run license, copyright and export control scans from the command line. As a system, a database and web ui are provided to give you a compliance workflow. License, copyright and export scanners are tools used in the workflow.
Organization: fossology
Home Page: https://fossology.github.io/
compliance,HummerRisk 是云原生安全平台,包括混合云安全治理和云原生安全检测。
Organization: hummerrisk
Home Page: https://hummerrisk.com
compliance,InSpec: Auditing and Testing Framework
Organization: inspec
Home Page: http://inspec.io
compliance,ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks
User: jonrau1
compliance,LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
Organization: lunasec-io
Home Page: https://www.lunasec.io/
compliance,Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners + OpenAI GPT with One Report (Code, IaC) - Betterscan Community Edition (CE)
User: marcinguy
Home Page: https://betterscan.io
compliance,Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.
User: mikeroyal
compliance,Rudder is a configuration and security automation platform. Manage your Cloud, hybrid or on-premises infrastructure in a simple, scalable and dynamic way.
Organization: normation
Home Page: https://www.rudder.io
compliance,Configuration guidance for implementing the Windows 10 and Windows Server 2016 DoD Secure Host Baseline settings. #nsacyber
Organization: nsacyber
compliance,Open Policy Agent (OPA) is an open source, general-purpose policy engine.
Organization: open-policy-agent
Home Page: https://www.openpolicyagent.org
compliance,A common framework enabling companies to work together to protect consumers' privacy and data rights.
Organization: opengdpr
Home Page: https://www.opengdpr.org
compliance,NIST Certified SCAP 1.2 toolkit
Organization: openscap
Home Page: https://www.open-scap.org/tools/openscap-base
compliance,A suite of tools to automate software compliance checks.
Organization: oss-review-toolkit
Home Page: https://oss-review-toolkit.org
compliance,OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
Organization: ossec
Home Page: http://www.ossec.net
compliance,OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.
Organization: owasp-dep-scan
Home Page: https://discord.gg/pF4BYWEJcS
compliance,The GDPR Checklist
Organization: privacyradius
Home Page: https://gdprchecklist.io/
compliance,Open Source Static Scanning tool to detect data flows in your code, find data security vulnerabilities & generate accurate Play Store Data Safety Report.
Organization: privado-inc
Home Page: https://docs.privado.ai
compliance,🧵 CLI tool for directly patching container images using reports from vulnerability scanners
Organization: project-copacetic
Home Page: https://project-copacetic.github.io/copacetic/
compliance,Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
Organization: prowler-cloud
Home Page: https://prowler.com
compliance,Symmetric Encryption for Ruby Projects using OpenSSL
User: reidmorrison
Home Page: https://logger.rocketjob.github.io/
compliance,Security & License Compliance For Your App's Dependencies 🪱
Organization: sandworm-hq
Home Page: https://sandworm.dev
compliance,Secure SDK/vault for personal records/PII built to comply with GDPR
Organization: securitybunker
Home Page: https://databunker.org/
compliance,Library and CLI tool for analysing CloudFormation templates and check them for security compliance.
Organization: skyscanner
Home Page: https://cfripper.readthedocs.io/
compliance,Linting tool for CloudFormation templates
Organization: stelligent
compliance,Compliance automation framework, focused on SOC2
Organization: strongdm
Home Page: https://comply.strongdm.com
compliance,Tern is a software composition analysis tool and Python library that generates a Software Bill of Materials for container images and Dockerfiles. The SBOM that Tern generates will give you a layer-by-layer view of what's inside your container in a variety of formats including human-readable, JSON, HTML, SPDX and more.
Organization: tern-tools
compliance,a lightweight, security focused, BDD test framework against terraform.
Organization: terraform-compliance
Home Page: https://terraform-compliance.com
compliance,macOS Security Compliance Project
Organization: usnistgov
compliance,Open Security Controls Assessment Language (OSCAL)
Organization: usnistgov
Home Page: https://pages.nist.gov/OSCAL/
compliance,Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
Organization: wazuh
Home Page: https://wazuh.com/
compliance,Plugins for Wazuh Dashboard
Organization: wazuh
Home Page: https://wazuh.com/
compliance,Wazuh - Docker containers
Organization: wazuh
Home Page: https://wazuh.com
compliance,Wazuh - Ruleset
Organization: wazuh
Home Page: https://wazuh.com
compliance,A FAST Kubernetes manifests validator, with support for Custom Resources!
User: yannh
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.