There are 3 repositories under fedramp topic.
CISO Assistant is a one-stop-shop for GRC, covering Risk, AppSec and Audit Management and supporting +53 frameworks worldwide: NIST CSF, ISO 27001, SOC2, CIS, PCI DSS, NIS2, CMMC, PSPF, GDPR, HIPAA, Essential Eight, NYDFS-500, DORA, NIST AI RMF, 800-53, 800-171, CyFun, CJIS, AirCyber, NCSC, ECC, SCF and so much more
A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs
FedRAMP Automation
Open Source AWS Control Tower
Docker Enterprise Edition Security Controls for Compliance
Secure SDLC process template
A collection of awesome framework, libraries, learning tutorials, videos, webcasts, technical resources and cool stuff about General Data Protection Regulation (GDPR).
Point of Concept: To help to automate the collection of evidence for SOC 2 Audits and etc.
Coalfire Azure RAMP/pak Reference Architecture
dockerized-cloudsplot, CloudSploit is a security and configuration scanner that can detect hundreds of threats in your AWS account. Don't let a single misstep compromise your entire infrastructure.
Docker Build for GRC Tool - Eramba is a tool that helps with compliance, risk management, control testing, exception management, etc.
OpenRMF Professional open API automation scripts and code to POST, PUT, and GET information via the External API
Deploy Anchore Enterprise in an environment of your choice. Then follow through a series of labs that showcase how you can improve security across your software supply chain.
Compliance trestle plugin to support FedRAMP specific functionality.
This project exists to help DNN website owners by helping them to be FIPS-compliant on your way to and while maintaining your FedRAMP status.
Market research documents related to the Challenge.gov Ideation Platform.
Template for Policy as Code repositories
A collection of awesome software, libraries, documents, books, resources and cool stuff about Data Privacy in cybersecurity
An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources about FedRamp Compliance in Cybersecurity
Migrate meetings from Zoom, Microsoft teams or even Webex FedRamp to a different Webex commercial or FedRamp org.
[Not Production Ready] This repository automates the extraction vulnerability and flaw data from vulnerability sources and then generate a Plan of Actions and Milestones (POAM), addressing identified security issues effectively.
RampControl manages and tracks security compliance per FedRAMP requirements. It allows users to add new system security plans, manage POA&M entries, and export data in OSCAL format.
Coalfire AWS Account Setup Terraform Module
Coalfire AWS Security Core Terraform Module