Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27…
#
compliance
Repositories 167
OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, po…
hids
security
pci-dss
nist800-53
ossec
compliance
intrusion-detection
fim
loganalyzer
policy-monitoring
file-integrity-management
C
Updated Mar 13, 2019
Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and ta…
An open source, general-purpose policy engine.
InSpec: Auditing and Testing Framework
AWS Security Best Practices Assessment, Auditing, Hardening and Forensics Readiness Tool. It follows guidelines of th…
Configuration guidance for implementing the Windows 10 and Windows Server 2016 DoD Secure Host Baseline settings. #ns…
windows
windows-10
group-policy
nessus
windows-server
windows-server-2016
chrome-browser
adobe-reader
applocker
certificates
compliance
auditing
internet-explorer
microsoft-office
windows-firewall
audit
HTML
Updated Sep 12, 2018
Wazuh - Host and endpoint security
Plugin for sudo that requires another human to approve and monitor privileged sudo sessions
Security compliance content in SCAP, Bash, Ansible, and other formats
The GDPR Checklist
JavaScript
Updated Nov 25, 2018
NIST Certified SCAP 1.2 toolkit
Symmetric Encryption for Ruby Projects using OpenSSL
Compliance automation framework, focused on SOC2
Go
Updated Mar 16, 2019
FOSSology is an open source license compliance software system and toolkit. As a toolkit you can run license, copyrig…
fossology
spdx
license-management
license
compliance
oss
license-checking
license-scan
compliance-check
compliance-automation
spdx-licenses
C
Updated Mar 22, 2019
A common framework enabling companies to work together to protect consumers' privacy and data rights.
gdpr
data-processor
data-driven
right-to-be-forgotten
data-portability
portability
data-subject-request
privacy
open-source
compliance
Updated Mar 15, 2019
Continuous Auditing & Configuration
configuration-management
automation
compliance
continuous-configuration
devops
continous-auditing
auditing
Scala
Updated Mar 22, 2019
Wazuh - Ruleset
wazuh
ossec
security
loganalyzer
compliance
monitoring
intrusion-detection
policy-monitoring
elasticsearch
openscap
security-hardening
ids
pci-dss
file-integrity-management
security-awareness
log-analysis
vulnerability-detection
incident-response
Python
Updated Mar 22, 2019
a BDD Style terraform validation/compliancy check
A small Ruby Gem to run RSpec and Serverspec, Infrataster and Capybara tests against Dockerfiles or Docker images eas…
docker
rspec
serverspec
capybara
docker-compose
testing
travis-ci
circleci
compliance
tdd
tdd-utilities
spec
devops
rspec-retry
Ruby
Updated Aug 30, 2017
List of DNS violations by implementations, software and/or systems
Updated Jan 16, 2019
A suite of tools to assist with reviewing Open Source Software dependencies.
A crowdsourced directory tracking the GDPR compliance of cloud services and subprocessors
gdpr
legal
crowdsourcing
cloud
regtech
cloud-service
gdpr-tracker
privacy
compliance
certificates
certification
privacy-radius
security
audit
JavaScript
Updated Mar 11, 2019
The base SIMP build repository
Ruby
Updated Mar 20, 2019
The group for companies that run open source programs
CSS
Updated Mar 20, 2019
Collection of Data Processing Agreement (DPA) and GDPR compliance resources
CSS
Updated Aug 31, 2018
PowerShell scripts to ensure consistent and reliable build quality and configuration for your servers
qa
checks
powershell
qa-checks
ps1
configuration
verify
service-acceptance
gold-image
compliance
automation
winrm
quality
powershell-qa-scripts
consistency
reliability
reliable
PowerShell
Updated Jun 18, 2018
Wazuh - Kibana plugin