Repository navigation
soc2
- Website
- Wikipedia
CISO Assistant is a one-stop-shop for GRC, covering Risk, AppSec, Compliance/Audit Management, Privacy and supporting +80 frameworks worldwide with auto-mapping: NIST CSF, ISO 27001, SOC2, CIS, PCI DSS, NIS2, CMMC, PSPF, GDPR, HIPAA, Essential Eight, NYDFS-500, DORA, NIST AI RMF, 800-53, CyFun, AirCyber, NCSC, ECC, SCF and so much mor
Medplum is a healthcare platform that helps you quickly develop high-quality compliant applications.
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
Compliance automation framework, focused on SOC2
The open source compliance platform - Drata & Vanta Alternative
Metriport is an open-source universal API for healthcare data.
Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking. https://gapps.darkbanner.com
Open source solutions for SOC2, GDPR, and ISO27001
Enterprise-ready SIEM, SOAR and Compliance powered by real-time correlation and threat intelligence.
Template SOC2 Policy Authority - documentation pipeline
Open Source AWS Control Tower
Secure SDLC process template
opencomply simplifies security and compliance, from containers to cloud. Assess your resources (cloud servers, Jira, deployments, GitHub, etc.), define granular controls, get precise checks, and proactively address gaps. Streamline audits and remediation.
SOC 2 should be easy to get done and it should be inexpensive. Here's everything you wanted to know.
A collection of awesome framework, libraries, documents, learning tutorials, resources about SOC 2 tools and processes.
Designed for developers and compliance teams, the soc2 CLI tool utilizes the Go programming language and Cobra framework to offer an automated solution for evaluating SOC2 compliance. By assessing key areas such as Security, Availability, Processing Integrity, Confidentiality, and Privacy.
The Enhanced MITRE ATT&CK® Coverage Tracker is an Excel tool for SOCs to measure and improve detection coverage of cyber threats. It simplifies tracking of security readiness against ATT&CK® tactics and techniques, offering a customizable, user-friendly interface for SOC analysts.
This repository is dedicated to providing resources, information, and tools related to the NIS2 Directive, a European Union regulation aimed at improving the security of network and information systems across the EU.