139 results found Sort:

CISOfy
lynis CISOfy
1.4k
12.6k
gpl-3.0
347
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
gdpr unix hipaa linux shell devops pci-dss auditing hardening compliance devops-tools security-audit security-tools security-scanner system-hardening security-hardening security-vulnerability vulnerability-scanners vulnerability-detection vulnerability-assessment
Created 2013-12-10
3,685 commits to master branch, last one 4 days ago
prowler-cloud
prowler prowler-cloud
1.4k
9.7k
apache-2.0
117
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. ...
aws gcp iam gdpr azure cloud python security devsecops forensics hardening compliance multi-cloud cis-benchmark security-audit security-tools well-architected security-hardening
Created 2016-08-24
3,598 commits to master branch, last one 13 hours ago
wazuh
wazuh wazuh
1.5k
9.4k
other
212
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
xdr siem wazuh infosec pci-dss security compliance log-analysis cybersecurity cloud-security security-audit security-tools incident-response malware-detection container-security security-hardening security-automation vulnerability-detection configuration-assessement file-integrity-monitoring
Created 2015-08-11
34,450 commits to master branch, last one 10 hours ago
open-policy-agent
opa open-policy-agent
1.3k
9.2k
apache-2.0
125
Open Policy Agent (OPA) is an open source, general-purpose policy engine.
opa doge json lolcat policy compliance declarative cloud-native authorization open-policy-agent
Created 2015-12-28
5,088 commits to main branch, last one 20 hours ago
codenotary
immudb codenotary
338
8.5k
other
79
immudb - immutable database based on zero trust, SQL/Key-Value/Document model, tamperproof, data change history
go sql gdpr verify pci-dss database auditable immutable key-value compliance timetravel zero-trust merkle-tree performance tamperproof verification cryptographic tamper-evident immutable-database
Created 2019-11-07
4,761 commits to master branch, last one a day ago
bridgecrewio
checkov bridgecrewio
1.1k
6.6k
apache-2.0
58
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
aws gcp azure scans devops terraform compliance kubernetes aws-security hacktoberfest cloudformation static-analysis infrastructure-as-code
Created 2019-11-27
16,108 commits to main branch, last one a day ago
aquasecurity
tfsec aquasecurity
530
6.6k
mit
71
Security scanner for your Terraform code
ci go aws azure devops linter scanner security devsecops terraform compliance digitalocean hacktoberfest static-analysis misconfiguration terraform-security google-cloud-platform infrastructure-as-code vulnerability-scanners
Created 2019-03-04
1,341 commits to master branch, last one 25 days ago
cloud-custodian
cloud-custodian cloud-custodian
1.4k
5.3k
apache-2.0
165
Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources
aws gcp azure cloud lambda compliance management serverless rules-engine cloud-computing
Created 2016-03-01
4,618 commits to main branch, last one 16 hours ago
deepfence
ThreatMapper deepfence
572
4.7k
apache-2.0
58
Open Source Cloud Native Application Protection Platform (CNAPP)
cspm cwpp cnapp devops secops devsecops compliance containers kubernetes cloud-native cloudsecurity hacktoberfest observability scanning-tool security-tools threat-analysis registry-scanning vulnerability-scanners vulnerability-detection vulnerability-management
Created 2020-02-06
6,867 commits to main branch, last one 16 hours ago
ossec
ossec-hids ossec
1.0k
4.3k
other
332
OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
fim hids ossec pci-dss security compliance nist800-53 loganalyzer policy-monitoring intrusion-detection file-integrity-management
Created 2013-09-17
5,874 commits to master branch, last one 21 days ago
inspec
inspec inspec
682
2.8k
other
134
InSpec: Auditing and Testing Framework
tdd spec audit devops devsec inspec testing security compliance tdd-utilities
Created 2015-08-28
11,363 commits to main branch, last one 22 hours ago
0x6d69636b
windows_hardening 0x6d69636b
301
2.2k
mit
67
HardeningKitty and Windows Hardening settings and configurations
audit defense windows blueteam registry security checklist hardening compliance powershell windows-10 windows-hardening
Created 2017-10-23
671 commits to master branch, last one 11 days ago
ComplianceAsCode
content ComplianceAsCode
671
2.1k
other
124
Security automation content in SCAP, Bash, Ansible, and other formats
cce cpe ospp oval scap stig usgcb xccdf ansible pci-dss security hardening compliance cybersecurity security-tools security-profile security-hardening security-automation application-security information-security
Created 2014-04-29
35,816 commits to master branch, last one 11 hours ago
yannh
kubeconform yannh
114
2.0k
apache-2.0
5
A FAST Kubernetes manifests validator, with support for Custom Resources!
compliance kubernetes validation
Created 2020-05-30
386 commits to master branch, last one 22 days ago
ballerine-io
ballerine ballerine-io
167
2.0k
other
25
Open-source infrastructure and data orchestration platform for risk decisioning
idv kyb kyc ocr sdk flow fraud svelte dashboard compliance liveliness onboarding back-office rule-engine orchestration id-card-camera case-management risk-management know-your-customer identity-verification
Created 2022-10-02
1,572 commits to dev branch, last one a day ago
Bearer
bearer Bearer
82
1.8k
other
19
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
gdpr sast owasp appsec privacy dataflow security devsecops compliance code-quality vulnerability security-audit security-tools devsecops-tools static-analysis vulnerabilities security-scanner security-automation static-code-analysis
Created 2022-09-27
1,237 commits to main branch, last one a day ago
HummerRisk
HummerRisk HummerRisk
288
1.8k
gpl-3.0
111
HummerRisk 是云原生安全平台,包括混合云安全治理和云原生安全检测。
cspm sbom trivy prowler security compliance cloud-native k8s-security vulnerability cloud-custodian compliance-as-code kubernetes-security cloud-native-security
Created 2022-06-03
3,116 commits to master branch, last one 7 months ago
usnistgov
macos_security usnistgov
186
1.6k
other
132
macOS Security Compliance Project
mdm zsh bash apple macos python3 compliance
Created 2020-06-05
1,336 commits to main branch, last one about a month ago
nsacyber
Windows-Secure-Host-Baseline nsacyber
288
1.5k
other
210
Configuration guidance for implementing the Windows 10 and Windows Server 2016 DoD Secure Host Baseline settings. #nsacyber
audit nessus windows auditing applocker compliance windows-10 adobe-reader certificates group-policy chrome-browser windows-server microsoft-office windows-firewall internet-explorer windows-server-2016
This repository has been archived (exclude archived)
Created 2016-02-26
449 commits to master branch, last one 5 years ago
oss-review-toolkit
ort oss-review-toolkit
294
1.5k
apache-2.0
41
A suite of tools to automate software compliance checks.
sca ospo sbom spdx license copyright cyclonedx compliance dependencies license-scan package-scan hacktoberfest copyright-scan oss-compliance sbom-generator package-manager dependency-graph license-checking license-management open-source-licensing
Created 2017-10-19
15,579 commits to main branch, last one 23 hours ago
bytedance
appshark bytedance
159
1.4k
apache-2.0
19
Appshark is a static taint analysis platform to scan vulnerabilities in an Android app.
android compliance vulnerability static-analysis
Created 2022-09-01
121 commits to main branch, last one 4 months ago
lunasec-io
lunasec lunasec-io
162
1.4k
other
30
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTra...
gdpr sbom soc2 pci-dss scanning security devsecops log4shell compliance zero-trust cve-scanning tokenization web-security cybersecurity scanning-tool sbom-generator security-tools continuous-delivery dependency-analysis software-composition-analysis
Created 2021-03-16
3,454 commits to master branch, last one about a month ago
terraform-compliance
cli terraform-compliance
150
1.3k
mit
38
a lightweight, security focused, BDD test framework against terraform.
bdd testing bdd-style hashicorp terraform compliance infrastructure testing-framework
Created 2017-04-02
1,160 commits to master branch, last one about a month ago
OpenSCAP
openscap OpenSCAP
361
1.3k
lgpl-2.1
74
NIST Certified SCAP 1.2 toolkit
cpe oval scap xccdf openscap scanning compliance data-stream
Created 2014-04-29
11,234 commits to main branch, last one 22 days ago
strongdm
comply strongdm
238
1.3k
apache-2.0
75
Compliance automation framework, focused on SOC2
go grc gdpr soc2 hipaa golang iso27001 templates compliance pdf-generation documentation-toolchain
Created 2018-03-07
240 commits to master branch, last one about a year ago
aws-cloudformation
cloudformation-guard aws-cloudformation
176
1.2k
apache-2.0
39
Guard offers a policy-as-code domain-specific language (DSL) to write rules and validate JSON- and YAML-formatted data such as CloudFormation Templates, K8s configurations, and Terraform JSON plans/co...
k8s security cfn-guard terraform compliance governance cloudformation policy-as-code policy-rule-evaluation
Created 2020-06-12
554 commits to main branch, last one 23 days ago
square
sudo_pair square
51
1.2k
apache-2.0
27
Plugin for sudo that requires another human to approve and monitor privileged sudo sessions
pam rust sudo linux pairing security compliance authentication
Created 2018-05-04
373 commits to master branch, last one about a year ago
stelligent
cfn_nag stelligent
208
1.2k
mit
34
Linting tool for CloudFormation templates
aws cfn lint amazon devops cfn-nag linting security iam-rules compliance stelligent open-source unit-testing hacktoberfest cloudformation static-analysis continuous-testing security-automation cloudformation-security cloudformation-templates
Created 2016-02-11
664 commits to master branch, last one about a year ago
securitybunker
databunker securitybunker
70
1.2k
mit
33
Secure SDK/vault for personal records/PII built to comply with GDPR
pii ccpa gdpr vault piidata privacy database security legaltech compliance encryption passportjs tokenization user-consent anonymization secure-storage data-protection privacy-by-design application-server data-anonymization
Created 2019-12-08
1,021 commits to master branch, last one 10 days ago
tern-tools
tern tern-tools
187
942
bsd-2-clause
31
Tern is a software composition analysis tool and Python library that generates a Software Bill of Materials for container images and Dockerfiles. The SBOM that Tern generates will give you a layer-by-...
sbom spdx tool docker python compliance containers open-source dependencies oss-compliance risk-management metadata-extraction supply-chain-security software-composition-analysis
Created 2017-11-27
1,102 commits to main branch, last one 5 months ago