Wazuh Kibana AppWazuh - Kibana plugin
Stars: ✭ 212 (+443.59%)
Mutual labels: compliance
steampipe-mod-kubernetes-complianceRun individual controls or full compliance benchmarks for NSA CISA Kubernetes Hardening Guidance across all of your Kubernetes clusters using Steampipe.
Stars: ✭ 23 (-41.03%)
Mutual labels: compliance
wazuh-packagesWazuh - Tools for packages creation
Stars: ✭ 54 (+38.46%)
Mutual labels: compliance
TfsecSecurity scanner for your Terraform code
Stars: ✭ 3,622 (+9187.18%)
Mutual labels: compliance
cis benchmarks auditSimple command line tool to check for compliance against CIS Benchmarks
Stars: ✭ 182 (+366.67%)
Mutual labels: compliance
havengrc☁️Haven GRC - easier governance, risk, and compliance 👨⚕️👮♀️🦸♀️🕵️♀️👩🔬
Stars: ✭ 83 (+112.82%)
Mutual labels: compliance
Wazuh DockerWazuh - Docker containers
Stars: ✭ 213 (+446.15%)
Mutual labels: compliance
wazuh-ansibleWazuh - Ansible playbook
Stars: ✭ 166 (+325.64%)
Mutual labels: compliance
lunasecLunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
Stars: ✭ 1,261 (+3133.33%)
Mutual labels: compliance
ticket-check-actionVerify that pull request titles start with a ticket ID
Stars: ✭ 29 (-25.64%)
Mutual labels: compliance
prowlerProwler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.
Stars: ✭ 8,046 (+20530.77%)
Mutual labels: compliance
dep-scanFully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI and Google CloudBuild. No server required!
Stars: ✭ 346 (+787.18%)
Mutual labels: compliance
LOCKLEVELA prototype that demonstrates a method for scoring how well Windows systems have implemented some of the top 10 Information Assurance mitigation strategies. #nsacyber
Stars: ✭ 98 (+151.28%)
Mutual labels: compliance
Dns ViolationsList of DNS violations by implementations, software and/or systems
Stars: ✭ 216 (+453.85%)
Mutual labels: compliance
forgeISC Forge is an open source DHCP conformance validation framework, primarily used for testing ISC Kea.
Stars: ✭ 26 (-33.33%)
Mutual labels: compliance
Binaryanalysis NgBinary Analysis Next Generation (BANG)
Stars: ✭ 215 (+451.28%)
Mutual labels: compliance
openacrOpenACR is a digital native Accessibility Conformance Report (ACR). The initial development is based on Section 508 requirements. The main goal is to be able to compare the accessibility claims of digital products and services. A structured, self-validated, machine-readable documentation will provide for this.
Stars: ✭ 61 (+56.41%)
Mutual labels: compliance
interceptINTERCEPT / Policy as Code Static Analysis Auditing / SAST
Stars: ✭ 54 (+38.46%)
Mutual labels: compliance
cscannerAn open source, multi-cloud DevSecOps compliance checker
Stars: ✭ 19 (-51.28%)
Mutual labels: compliance
guardianGuardian is a tool for extensible and universal data access with automated access workflows and security controls across data stores, analytical systems, and cloud products.
Stars: ✭ 127 (+225.64%)
Mutual labels: compliance