#

compliance

Here are 679 public repositories matching this topic...

CISOfy / lynis

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Updated Apr 29, 2024
Shell

prowler

prowler-cloud / prowler

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more

python aws security security-audit cloud azure iam gcp forensics compliance hardening security-hardening gdpr multi-cloud security-tools devsecops cis-benchmark well-architected

Updated Apr 29, 2024
Python

wazuh / wazuh

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Updated Apr 29, 2024
C

open-policy-agent / opa

Open Policy Agent (OPA) is an open source, general-purpose policy engine.

json declarative policy authorization opa cloud-native compliance doge lolcat open-policy-agent

Updated Apr 29, 2024
Go

immudb

codenotary / immudb

immudb - immutable database based on zero trust, SQL/Key-Value/Document model, tamperproof, data change history

go verify performance immutable sql database key-value verification pci-dss cryptographic compliance merkle-tree immutable-database gdpr zero-trust timetravel tamper-evident auditable tamperproof

Updated Apr 26, 2024
Go

tfsec

aquasecurity / tfsec

Security scanner for your Terraform code

go aws security digitalocean devops ci azure terraform scanner linter static-analysis infrastructure-as-code compliance google-cloud-platform hacktoberfest vulnerability-scanners devsecops misconfiguration terraform-security

Updated Apr 24, 2024
Go

bridgecrewio / checkov

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

kubernetes aws devops cloudformation azure terraform static-analysis gcp infrastructure-as-code scans compliance hacktoberfest aws-security

Updated Apr 29, 2024
Python

cloud-custodian

cloud-custodian / cloud-custodian

Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources

aws lambda cloud serverless azure management gcp cloud-computing compliance rules-engine

Updated Apr 29, 2024
Python

ThreatMapper

deepfence / ThreatMapper

Open source cloud native security observability platform. Linux, K8s, AWS Fargate and more.

Updated Apr 29, 2024
TypeScript

ossec / ossec-hids

OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.

security intrusion-detection pci-dss compliance hids fim loganalyzer ossec policy-monitoring nist800-53 file-integrity-management

Updated Mar 4, 2024
C

inspec / inspec

InSpec: Auditing and Testing Framework

testing security devops tdd spec audit compliance inspec devsec tdd-utilities

Updated Apr 29, 2024
Ruby

0x6d69636b / windows_hardening

HardeningKitty and Windows Hardening settings and configurations

windows checklist security registry powershell audit windows-10 compliance hardening defense blueteam windows-hardening

Updated Apr 27, 2024
PowerShell

ComplianceAsCode / content

Security automation content in SCAP, Bash, Ansible, and other formats

Updated Apr 29, 2024
Shell

ballerine

ballerine-io / ballerine

Open-source infrastructure and data orchestration platform for risk decisioning

Updated Apr 29, 2024
TypeScript

yannh / kubeconform

A FAST Kubernetes manifests validator, with support for Custom Resources!

kubernetes validation compliance

Updated Mar 31, 2024
Go

HummerRisk / HummerRisk

HummerRisk 是云原生安全平台，包括混合云安全治理和云原生安全检测。

security vulnerability cloud-native compliance cloud-custodian compliance-as-code prowler sbom kubernetes-security trivy k8s-security cspm cloud-native-security

Updated Mar 13, 2024
Java

Bearer / bearer

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

security security-audit privacy static-code-analysis static-analysis owasp dataflow vulnerability code-quality compliance vulnerabilities appsec security-scanner gdpr security-automation security-tools devsecops sast devsecops-tools

Updated Apr 29, 2024
Go

usnistgov / macos_security

macOS Security Compliance Project

macos bash zsh apple python3 compliance mdm

Updated Apr 24, 2024
YAML

nsacyber / Windows-Secure-Host-Baseline

Configuration guidance for implementing the Windows 10 and Windows Server 2016 DoD Secure Host Baseline settings. #nsacyber

windows auditing certificates chrome-browser audit windows-10 windows-server compliance nessus group-policy applocker internet-explorer windows-firewall microsoft-office windows-server-2016 adobe-reader

Updated Dec 24, 2022
HTML

ort

oss-review-toolkit / ort

A suite of tools to automate software compliance checks.

Updated Apr 29, 2024
Kotlin

Improve this page

Add a description, image, and links to the compliance topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the compliance topic, visit your repo's landing page and select "manage topics."