Data

Tools

Indexes

Applications

Experiments

Repos

An open API service providing repository metadata for many open source software ecosystems.

GitHub topics: soc2

metriport/metriport

Metriport is an open-source universal API for healthcare data.

Language: JavaScript - Size: 505 MB - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 591 - Forks: 67

uprightsleepy/mcp-cloud-compliance

Conversational cloud security compliance auditing. MCP server enabling natural language queries about AWS security posture via Claude and other AI assistants.

Language: Java - Size: 4.88 KB - Last synced at: 1 day ago - Pushed at: 2 days ago - Stars: 1 - Forks: 0

utmstack/UTMStack

Enterprise-ready SIEM, SOAR and Compliance powered by real-time correlation and threat intelligence.

Language: Java - Size: 187 MB - Last synced at: 1 day ago - Pushed at: 2 days ago - Stars: 277 - Forks: 36

medplum/medplum

Medplum is a healthcare platform that helps you quickly develop high-quality compliant applications.

Language: TypeScript - Size: 235 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 1,625 - Forks: 485

bmarsh9/gapps

Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking

Language: HTML - Size: 3.62 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 549 - Forks: 124

getprobo/probo

Open source solutions for SOC2, GDPR, and ISO27001

Language: TypeScript - Size: 7.63 MB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 512 - Forks: 35

trycompai/comp

The open source compliance platform - Drata & Vanta Alternative

Language: TypeScript - Size: 50.5 MB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 807 - Forks: 97

intuitem/ciso-assistant-community

CISO Assistant is a one-stop-shop for GRC, covering Risk, AppSec, Compliance/Audit Management, Privacy and supporting +90 frameworks worldwide with auto-mapping: NIST CSF, ISO 27001, SOC2, CIS, PCI DSS, NIS2, CMMC, PSPF, GDPR, HIPAA, Essential Eight, NYDFS-500, DORA, NIST AI RMF, 800-53, CyFun, AirCyber, NCSC, ECC, SCF and so much mor

Language: Python - Size: 121 MB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 2,944 - Forks: 385

lunasec-io/lunasec

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

Language: TypeScript - Size: 293 MB - Last synced at: 15 days ago - Pushed at: about 1 year ago - Stars: 1,448 - Forks: 169

strongdm/comply

Compliance automation framework, focused on SOC2

Language: Go - Size: 5.44 MB - Last synced at: 14 days ago - Pushed at: almost 3 years ago - Stars: 1,385 - Forks: 255

Elevated-Standards/proof-of-concept-cloud-evidence-collection 📦

Point of Concept: To help to automate the collection of evidence for SOC 2 Audits and etc.

Language: Shell - Size: 199 KB - Last synced at: 6 days ago - Pushed at: about 1 year ago - Stars: 10 - Forks: 4

kosli-dev/secure-sdlc-process-template

Secure SDLC process template

Language: HTML - Size: 5.67 MB - Last synced at: 23 days ago - Pushed at: 23 days ago - Stars: 58 - Forks: 52

opszero/terraform-aws-kubespot

Language: HCL - Size: 1.54 MB - Last synced at: 6 days ago - Pushed at: about 1 month ago - Stars: 115 - Forks: 30

austinsonger/Automated-Vendor-Risk-Assessment

Vendor Risk Assessment

Language: Python - Size: 324 KB - Last synced at: 6 days ago - Pushed at: 28 days ago - Stars: 0 - Forks: 0

CyberRiskGuy/aicpa-soc-tsc-json

SOC 2 Trust Services Criteria (control requirements) and framework mappings in machine readable formats.

Size: 2.31 MB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 0 - Forks: 0

HamzaMZaman/IsenguardAI

An advanced AI-powered security and monitoring system designed for real-time threat detection, automated responses, and seamless cloud integration to enhance digital and physical safety.

Language: CSS - Size: 5.94 MB - Last synced at: 23 days ago - Pushed at: about 2 months ago - Stars: 1 - Forks: 1

paulveillard/cybersecurity-pci-dss-compliance

An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources about PCI DSS Compliance Standard in Cybersecurity.

Language: Python - Size: 58.5 MB - Last synced at: 1 day ago - Pushed at: 4 months ago - Stars: 2 - Forks: 1

CyberAlbSecOP/Awesome_NIS2_Directive

This repository is dedicated to providing resources, information, and tools related to the NIS2 Directive, a European Union regulation aimed at improving the security of network and information systems across the EU.

Size: 33.2 KB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 15 - Forks: 1

wpengine/base-images-public

Simple Docker Images

Language: Dockerfile - Size: 270 KB - Last synced at: 38 minutes ago - Pushed at: 2 months ago - Stars: 16 - Forks: 10

loftwah/complisight

Designed for developers and compliance teams, the soc2 CLI tool utilizes the Go programming language and Cobra framework to offer an automated solution for evaluating SOC2 compliance. By assessing key areas such as Security, Availability, Processing Integrity, Confidentiality, and Privacy.

Language: Shell - Size: 75.2 KB - Last synced at: 29 days ago - Pushed at: over 1 year ago - Stars: 21 - Forks: 0

getprobo/awesome-compliance

A curated list of tools, frameworks, and resources for IT compliance, security standards, and regulatory requirements

Size: 77.1 KB - Last synced at: 29 days ago - Pushed at: 4 months ago - Stars: 5 - Forks: 1

footholdtech/pg_audit_log Fork of dylanz/pg_audit_log

Create a trigger-based audit log for PostgreSQL

Language: Ruby - Size: 137 KB - Last synced at: 2 months ago - Pushed at: 2 months ago - Stars: 0 - Forks: 0

argon-gh-demo/graphql-vuln

Language: JavaScript - Size: 3.07 MB - Last synced at: 23 days ago - Pushed at: 23 days ago - Stars: 2 - Forks: 5

ajy0127/security-hub-compliance-analyzer

AWS SecurityHub Multi-Framework Compliance Analyzer

Language: Python - Size: 59.1 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0

ajy0127/analyze-securityhub-findings-with-bedrock-soc2 Fork of aws-samples/analyze-securityhub-findings-with-bedrock

AWS Security Hub Findings Analyzer enhanced with SOC 2 compliance mapping and reporting capabilities. This fork extends the original project with automated mapping of security findings to SOC 2 Trust Service Criteria and generates audit-ready compliance reports.

Language: Python - Size: 80.1 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0

gjyoung1974/soc2-policy-templates

Template SOC2 Policy Authority - documentation pipeline

Language: HTML - Size: 30.3 MB - Last synced at: 2 months ago - Pushed at: over 4 years ago - Stars: 108 - Forks: 37

chainguard-dev/kolide-google-matcher

Unearth host mismatches between Kolide & Google Workspace

Language: Go - Size: 237 KB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 5 - Forks: 2

Elevated-Standards/AutoPilot-Audit 📦

This repository automates the collection and management of evidence from various tools and sources, committing the data for transparency and traceability. It's designed to gather evidence that tools like Vanta and others aren't built to collect.

Language: Python - Size: 850 KB - Last synced at: 6 days ago - Pushed at: 6 months ago - Stars: 1 - Forks: 0

The-Swarm-Corporation/Custom-Swarms-Spec-Template

Build your dream AI agent swarm with enterprise-grade reliability and scalability. This repository contains our official specification template for custom swarm development using the powerful Swarms Framework.

Size: 79.1 KB - Last synced at: 2 months ago - Pushed at: 5 months ago - Stars: 2 - Forks: 0

paulveillard/cybersecurity-soc-compliance

A collection of awesome framework, libraries, documents, learning tutorials, resources about SOC 2 tools and processes.

Size: 301 KB - Last synced at: 2 months ago - Pushed at: over 3 years ago - Stars: 23 - Forks: 2

quitehacker/MITRE-ATTACK-Enterprise-Matrix-in-Excel-for-SOC

The Enhanced MITRE ATT&CK® Coverage Tracker is an Excel tool for SOCs to measure and improve detection coverage of cyber threats. It simplifies tracking of security readiness against ATT&CK® tactics and techniques, offering a customizable, user-friendly interface for SOC analysts.

Size: 7.12 MB - Last synced at: 6 months ago - Pushed at: 6 months ago - Stars: 11 - Forks: 0

Santiago-Labs/telophasecli

Open Source AWS Control Tower

Language: Go - Size: 9.7 MB - Last synced at: 5 months ago - Pushed at: 5 months ago - Stars: 88 - Forks: 5

Elevated-Standards/Informational

Size: 20.5 KB - Last synced at: 2 months ago - Pushed at: 8 months ago - Stars: 0 - Forks: 0

austinsonger/Security-Program

This template repo is used for managing SOC2 compliance using nothing, but github.

Size: 183 KB - Last synced at: 3 months ago - Pushed at: almost 4 years ago - Stars: 6 - Forks: 3

makt96/AES-ShellCode-Reverse

Language: C++ - Size: 228 KB - Last synced at: 11 months ago - Pushed at: 11 months ago - Stars: 0 - Forks: 0

argon-gh-demo/insecure-app-demo

Language: JavaScript - Size: 3.67 MB - Last synced at: about 1 year ago - Pushed at: almost 2 years ago - Stars: 1 - Forks: 4

andresguisado-org/insecure-app-test-demo

Language: JavaScript - Size: 4.25 MB - Last synced at: about 1 year ago - Pushed at: over 2 years ago - Stars: 0 - Forks: 0

wpengine/php-docker 📦

RD - PHP docker base images

Language: Roff - Size: 52.7 KB - Last synced at: 38 minutes ago - Pushed at: almost 6 years ago - Stars: 46 - Forks: 26

gjyoung1974/vgs_cardform_demo

Android "add payment card" form - This app demonstrates how simple it is to add payment card data to your app with VeryGoodSecurity

Language: Java - Size: 2.33 MB - Last synced at: about 1 year ago - Pushed at: about 7 years ago - Stars: 0 - Forks: 0

Rhosys/soc2.fyi

SOC 2 should be easy to get done and it should be inexpensive. Here's everything you wanted to know.

Language: Vue - Size: 7.31 MB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 12 - Forks: 2

ZioGuillo/encrypt_rds_pipeline

Automates RDS encryption for SOC2/CMMC compliance. Includes scripts for creating encrypted RDS snapshots and new instances from these snapshots, enhancing data security. Streamlines compliance and management, offering a robust solution for secure RDS encryption, reducing manual effort.

Language: Python - Size: 11.7 KB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 1 - Forks: 0

gargmegham/CspmMapper

This repository contains scripts to map security control frameworks to various cloud service providers' security posture management (CSPM) reports.

Language: Python - Size: 1.36 MB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 0 - Forks: 0

gjyoung1974/policy-pipeline

Policy Pipeline : place an SDLC around your compliance documentation with a pipeline that renders policy-as-code to human friendly formats

Language: Dockerfile - Size: 84 KB - Last synced at: about 1 year ago - Pushed at: over 4 years ago - Stars: 11 - Forks: 2

RSMap/TFG

Documentación de RSMap

Language: TeX - Size: 9.96 MB - Last synced at: over 1 year ago - Pushed at: over 8 years ago - Stars: 0 - Forks: 1

RSMap/test

test-repo

Size: 0 Bytes - Last synced at: over 1 year ago - Pushed at: about 2 years ago - Stars: 0 - Forks: 0

HonestCloudSolutions/graphql-vulnerable

Language: JavaScript - Size: 2.55 MB - Last synced at: about 1 year ago - Pushed at: over 1 year ago - Stars: 0 - Forks: 0

oreillymedia/katacoda-marked

O'Reilly copy of https://github.com/BenHall/marked, forked from https://github.com/markedjs/marked

Language: HTML - Size: 655 KB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 0 - Forks: 0

VantaInc/vanta-control-set

The Vanta Control Set maps common compliance standards from their requirements to controls and provides them in an easy to consume machine-readable format.

Size: 35.2 KB - Last synced at: about 2 years ago - Pushed at: almost 4 years ago - Stars: 2 - Forks: 2

omc/telegraf Fork of influxdata/telegraf

The plugin-driven server agent for collecting & reporting metrics.

Language: Go - Size: 30.3 MB - Last synced at: 12 months ago - Pushed at: 12 months ago - Stars: 0 - Forks: 0

Related Keywords
soc2 49 compliance 23 security 13 iso27001 10 hipaa 8 fedramp 7 grc 7 nist 6 aws 6 pci-dss 6 gdpr 5 cybersecurity 5 ai 4 compliance-as-code 4 audit 4 security-audit 4 security-automation 3 security-tools 3 compliance-automation 3 cmmc 3 nist800-53 3 pci 3 healthcare 3 tailwindcss 2 react 2 owasp 2 soc2-platform 2 policy-as-code 2 automation 2 rd 2 docker 2 securityhub 2 fhir 2 open-source 2 nis2 2 security-operations-center 2 typescript 2 stateramp 2 mcp 2 risk-management 2 devsecops 2 data-pipelines 1 agents 1 tx-ramp 1 aws-lambda 1 poam 1 bedrock 1 federal 1 evidence-collection 1 claude 1 documentation-automation 1 documentation-generator 1 evidence 1 documentation-pipeline 1 mdm 1 kolide 1 google 1 pci-devices 1 pci-express 1 pci-payment-processor 1 regulation 1 settlement 1 sox 1 sox-compliant 1 eu 1 european-union 1 iso9001 1 nis 1 nis2directive 1 nist2 1 regulations 1 standard 1 standards 1 awesome 1 awesome-list 1 esg 1 fedram 1 gouvernance 1 iso2700 1 policy 1 fcm 1 test-topic 1 enterprise 1 aes-encryption 1 cryptography 1 malware-analysis 1 malware-development 1 programming 1 reverse-engineering 1 test 1 php 1 android 1 android-development 1 android-security 1 experian 1 boto3 1 encryption 1 python3 1 rds 1 rds-database 1