compliance

There are 35 repositories under compliance topic.

CISOfy / lynis
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
shell linux pci-dss compliance security-audit security-hardening security-scanner security-vulnerability hipaa unix vulnerability-detection vulnerability-scanners vulnerability-assessment devops devops-tools system-hardening hardening auditing gdpr security-tools
Language:Shell 9923
immudb
codenotary / immudb
immudb - immutable database based on zero trust, SQL and Key-Value, tamperproof, data change history
key-value immutable merkle-tree go database tamperproof verification immutable-database compliance pci-dss gdpr cryptographic tamper-evident verify auditable performance sql timetravel replication zero-trust
Language:Go 7741
open-policy-agent / opa
An open source, general-purpose policy engine.
opa policy declarative json compliance cloud-native authorization doge lolcat open-policy-agent
Language:Go 6958
prowler
prowler-cloud / prowler
Prowler is an Open Source security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 240 controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.
assessment aws aws-auditing aws-cli cis cis-benchmark cloud cloudtrail compliance devsecops forensics gdpr hacktoberfest hardening hipaa security security-audit security-hardening security-tools well-architected
Language:Shell 6417
tfsec
aquasecurity / tfsec
Security scanner for your Terraform code
terraform security scanner static-analysis ci aws azure google-cloud-platform compliance infrastructure-as-code devsecops vulnerability-scanners misconfiguration digitalocean devops linter go terraform-security
Language:Go 4895
wazuh / wazuh
Wazuh - The Open Source Security Platform
wazuh ossec security loganalyzer compliance monitoring intrusion-detection policy-monitoring elasticsearch openscap security-hardening ids pci-dss file-integrity-management security-awareness log-analysis vulnerability-detection incident-response
Language:C 4631
bridgecrewio / checkov
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
terraform static-analysis aws gcp azure aws-security azure-security gcp-security cloudformation scans compliance kubernetes kubernetes-security devsecops policy-as-code infrastructure-as-code devops terraform-security hacktoberfest bicep
Language:Python 4522
cloud-custodian
cloud-custodian / cloud-custodian
Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources
aws compliance cloud rules-engine cloud-computing management serverless lambda gcp azure
Language:Python 4268
ossec / ossec-hids
OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
hids security pci-dss nist800-53 ossec compliance intrusion-detection fim loganalyzer policy-monitoring file-integrity-management
Language:C 3766
inspec / inspec
InSpec: Auditing and Testing Framework
audit inspec security compliance devsec devops tdd-utilities tdd spec testing
Language:Ruby 2544
cloudquery / cloudquery
The open-source cloud asset inventory powered by SQL.
aws gcp azure security monitor sql cloud-computing aws-security gcp-security cis-benchmark compliance well-architected cloudtrail cis cspm
Language:Go 2405
ComplianceAsCode / content
Security automation content in SCAP, Bash, Ansible, and other formats
security compliance scap xccdf oval cpe cce usgcb pci-dss ospp stig application-security security-tools security-hardening security-automation security-profile hardening information-security cybersecurity ansible
Language:Shell 1643
nsacyber / Windows-Secure-Host-Baseline
Configuration guidance for implementing the Windows 10 and Windows Server 2016 DoD Secure Host Baseline settings. #nsacyber
windows windows-10 group-policy nessus windows-server windows-server-2016 chrome-browser adobe-reader applocker certificates compliance auditing internet-explorer microsoft-office windows-firewall audit
Language:HTML 1384
terraform-compliance / cli
a lightweight, security focused, BDD test framework against terraform.
terraform hashicorp bdd-style compliance bdd infrastructure testing testing-framework
Language:Python 1177
square / sudo_pair
Plugin for sudo that requires another human to approve and monitor privileged sudo sessions
authentication compliance linux pairing pam rust security sudo
Language:Rust 1154
lunasec-io / lunasec
LunaSec - Open Source AppSec platform that automatically notifies you the next time vulnerabilities like Log4Shell or node-ipc happen. Track your dependencies and builds in a centralized service. Get started in one-click via our GitHub App or host it yourself. https://github.com/apps/lunatrace-by-lunasec/
tokenization web-security compliance security soc2 pci-dss privacy-by-design gdpr zero-trust hardening devsecops log4shell dependency-analysis scanning cybersecurity security-tools scanning-tool cve-scanning sbom sbom-generator
Language:TypeScript 1137
cfn_nag
stelligent / cfn_nag
Linting tool for CloudFormation templates
continuous-testing unit-testing cloudformation aws devops iam-rules cloudformation-templates cfn-nag open-source static-analysis stelligent cfn lint linting amazon security security-automation cloudformation-security hacktoberfest compliance
Language:Ruby 1041
databunker
securitybunker / databunker
Secure SDK/vault for personal records/PII built to comply with GDPR
gdpr pii piidata security privacy privacy-by-design user-consent ccpa compliance legaltech anonymization data-anonymization database encryption vault tokenization application-server passportjs data-protection secure-storage
Language:Go 1001
aws-cloudformation / cloudformation-guard
Guard offers a policy-as-code domain-specific language (DSL) to write rules and validate JSON- and YAML-formatted data such as CloudFormation Templates, K8s configurations, and Terraform JSON plans/configurations against those rules.
cfn-guard cloudformation compliance governance k8s policy-as-code policy-rule-evaluation security terraform
Language:Rust 978
OpenSCAP / openscap
NIST Certified SCAP 1.2 toolkit
scap xccdf oval cpe compliance openscap scanning data-stream
Language:XSLT 955
ort
oss-review-toolkit / ort
A suite of tools to assist with reviewing Open Source Software dependencies.
license-scan package-scan package-manager provenance dependencies dependency-graph license copyright foss spdx copyright-scan compliance license-checking oss-compliance license-management open-chain-project sbom sbom-generator hacktoberfest
Language:Kotlin 896
usnistgov / macos_security
macOS Security Compliance Project
apple macos compliance zsh bash python3 mdm
Language:YAML 875
strongdm / comply
Compliance automation framework, focused on SOC2
soc2 grc compliance templates documentation-toolchain go golang pdf-generation gdpr hipaa iso27001
Language:Go 874
tern-tools / tern
Tern is a software composition analysis tool and Python library that generates a Software Bill of Materials for container images and Dockerfiles. The SBOM that Tern generates will give you a layer-by-layer view of what's inside your container in a variety of formats including human-readable, JSON, HTML, SPDX and more.
python containers oss-compliance sbom docker compliance spdx tool dependencies software-composition-analysis risk-management open-source supply-chain-security metadata-extraction
Language:Python 762
privacyradius / gdpr-checklist
The GDPR Checklist
checklist compliance gatsby gdpr gdpr-checklist privacy
Language:JavaScript 701
ElectricEye
jonrau1 / ElectricEye
Continuously monitor your AWS attack surface and evaluate services for configurations that can lead to degradation of confidentiality, integrity or availability. All results can be exported to Security Hub, JSON, CSV, Databases, and more for further aggregation and analysis.
continuous-compliance security-tools security-audit cloud-security security-monitoring well-architected security-hardening aws-security soar security-hub cloud-compliance-reporting monitoring-tool cloud-auditing security-engineering devsecops aws-audit aws-compliance compliance attack-surface-management
Language:Python 629
yannh / kubeconform
A FAST Kubernetes manifests validator, with support for Custom Resources!
compliance kubernetes validation
Language:Go 623
fossology / fossology
FOSSology is an open source license compliance software system and toolkit. As a toolkit you can run license, copyright and export control scans from the command line. As a system, a database and web ui are provided to give you a compliance workflow. License, copyright and export scanners are tools used in the workflow.
fossology spdx license-management license compliance oss license-checking license-scan compliance-check compliance-automation spdx-licenses
Language:PHP 577
mikeroyal / Open-Source-Security-Guide
Open Source Security Guide
best-practices security vulnerabilities compliance security-hardening owasp cve-scanning vulnerability-scanners vulnerability-detection security-tools security-automation pentesting-tools penetration-testing awesome-security privacy-protection cybersecurity kubernetes-security blueteaming redteam digital-forensic-readiness
Language:Go 507
reidmorrison / symmetric-encryption
Symmetric Encryption for Ruby Projects using OpenSSL
encryption ruby openssl symmetric-keys compliance pci
Language:Ruby 462
usnistgov / OSCAL
Open Security Controls Assessment Language (OSCAL)
assessment xml json schema nist automation authorization security compliance yaml
Language:XSLT 452
Normation / rudder
Rudder is a configuration and security automation platform. Manage your Cloud, hybrid or on-premises infrastructure in a simple, scalable and dynamic way.
configuration-management automation compliance continuous-configuration devops continous-auditing auditing
Language:Scala 376
cfripper
Skyscanner / cfripper
Library and CLI tool for analysing CloudFormation templates and check them for security compliance.
cfripper cloudformation-template cloudformation cloud-governance cloudformation-linter aws-security static-analysis compliance aws
Language:Python 368
wazuh / wazuh-docker
Wazuh - Docker containers
wazuh docker ossec security loganalyzer compliance monitoring intrusion-detection policy-monitoring elasticsearch security-hardening log-analysis ids pci-dss file-integrity-management security-awareness vulnerability-detection incident-response hacktoberfest hacktoberfest-accepted
Language:Shell 350
wazuh / wazuh-ruleset
Wazuh - Ruleset
wazuh ossec security loganalyzer compliance monitoring intrusion-detection policy-monitoring elasticsearch openscap security-hardening ids pci-dss file-integrity-management security-awareness log-analysis vulnerability-detection incident-response
Language:Python 341
armijnhemel / binaryanalysis-ng
Binary Analysis Next Generation (BANG)
compliance reverseengineering licensecompliance security
Language:Python 333

ezoic increase your site revenue