Elevated Standards

All

32 repositories

cloud_provider_apis
Public
0•0•0•0•Updated Jul 22, 2025Jul 22, 2025
RustWall
Public
Rust
•
MIT License
•0•0•0•1•Updated Jul 20, 2025Jul 20, 2025
InspectorGadget
Public template
Pulls scan results using the AWS Inspector API, combines various AWS Inspector scan results, and formats them scan results into an organized output that is POAM-ready.
aws pci-dss fedramp vulnerability-scanning iso-27001 soc-2
Python
•
Apache License 2.0
•0•0•0•0•Updated Jun 30, 2025Jun 30, 2025
archives
Public
Cross-platform library to create & extract archives, compress & decompress files, and walk virtual file systems across various formats
Go
•
MIT License
•25•0•0•0•Updated May 6, 2025May 6, 2025
fedramp-compliance-environment
Public template
HCL
•0•0•0•0•Updated May 2, 2025May 2, 2025
environment
Public
0•0•0•0•Updated May 2, 2025May 2, 2025
asset-utility
Public
TypeScript
•0•0•0•0•Updated Apr 26, 2025Apr 26, 2025
vulmanger
Public
0•0•0•0•Updated Apr 26, 2025Apr 26, 2025
UI
Public
TypeScript
•0•0•0•0•Updated Apr 15, 2025Apr 15, 2025
repo-python-template
Public template
Python
•
Apache License 2.0
•0•0•0•2•Updated Apr 2, 2025Apr 2, 2025
gosearch
Public
🔍 Search anyone's digital footprint across 300+ websites
Go
•
GNU General Public License v3.0
•215•0•0•0•Updated Mar 30, 2025Mar 30, 2025
InfoSecRoadMap
Public
Creative Commons Attribution Share Alike 4.0 International
•154•0•0•0•Updated Feb 25, 2025Feb 25, 2025
Cloudits
Public template
Cloudit automates compliance with evidence collection. Cloudit streamlines vulnerability tracking, audit workflows, and compliance reporting by gathering artifacts, comparing findings, and generating actionable plans—keeping your organization audit-ready at all times.
aws security jira azure gcp audit pci-dss compliance elastic grc
Python
•
Apache License 2.0
•0•0•14•0•Updated Feb 21, 2025Feb 21, 2025
Common_Controls
Public
0•0•0•0•Updated Feb 11, 2025Feb 11, 2025
RampScout
Public template
Creates a Inventory Excel Spreadsheet Using FedRAMP Template for AWS, Azure, GCP
aws nist azure gcp fedramp asset-management tx-ramp stateramp cloud-assets
Python
•
Apache License 2.0
•0•0•5•0•Updated Jan 27, 2025Jan 27, 2025
TenableTrawler
Public template
TenableTrawler (Cloud OR FedCloud) is a Python project that pulls scan results via the Tenable API, laying them into organized, POAM-ready outputs. It supports various scans and exports in formats like CSV, JSON, and YAML.
vulnerability nessus vulnerability-scanners fedramp tenable vulnerability-scanning nessus-scanner nessus-parser iso-27001 poam
Python
•
Apache License 2.0
•0•1•2•0•Updated Jan 23, 2025Jan 23, 2025
TheToolkit
Public template
Toolkit is a organized project of all of other projects into one if a organization needs to use them all.
Apache License 2.0
•0•0•0•0•Updated Jan 22, 2025Jan 22, 2025
.github
Public
0•0•0•0•Updated Jan 15, 2025Jan 15, 2025
terraform-aws-inspector
Public
Terraform module to provision AWS Inspector
HCL
•
Apache License 2.0
•15•0•0•0•Updated Jan 1, 2025Jan 1, 2025
POAM-Pilot
Public archive
The POAM Pilot is a application designed to streamline the tracking, management, and reporting of security vulnerabilities and compliance requirements.
nist fedramp poam tx-ramp stateramp
Python
•
Other
•1•2•0•0•Updated Dec 23, 2024Dec 23, 2024
github-action-atmos-component-updater
Public
GitHub Action that can be used as workflow for automatic update via Pull Requests infrastructure repository according to versions to components sources
Python
•
Apache License 2.0
•2•0•0•0•Updated Dec 23, 2024Dec 23, 2024
AutoPilot-Audit
Public archive
This repository automates the collection and management of evidence from various tools and sources, committing the data for transparency and traceability. It's designed to gather evidence that tools like Vanta and others aren't built to collect.
audit grc fedramp evidence soc2 federal poam evidence-collection tx-ramp stateramp
Python
•0•1•43•0•Updated Dec 19, 2024Dec 19, 2024
AutoPilot-POAMatrix
Public archive
Focuses on automating the management of Plans of Action and Milestones (POAM) using GitHub Actions and various external integrations.
ssp fedramp poam tx-ramp stateramp
Python
•0•2•0•0•Updated Dec 19, 2024Dec 19, 2024
Informational
Public
security pci-dss compliance fedramp soc2 iso-27001 soc-2 stateramp
0•0•41•0•Updated Oct 3, 2024Oct 3, 2024
username-anarchy
Public
Username tools for penetration testing
Ruby
•
MIT License
•147•0•0•0•Updated Sep 20, 2024Sep 20, 2024
AWS-RAMPpak
Public
Coalfire AWS RAMP/pak Reference Architecture
HCL
•
MIT License
•6•0•0•0•Updated Aug 29, 2024Aug 29, 2024
RampControl
Public archive
RampControl manages and tracks security compliance per FedRAMP requirements. It allows users to add new system security plans, manage POA&M entries, and export data in OSCAL format.
compliance grc fedramp nist800-53 poam governance-risk-compliance
Python
•1•1•4•0•Updated Jul 23, 2024Jul 23, 2024
InspectorBuddy
Public archive
[NOT PRODUCTION READY] This GitHub Action allows you to scan EC2 instances for software vulnerabilities using Amazon Inspector from your GitHub Actions workflows. Both agent-based and agentless scans are supported. Additionally, this action can create Jira tickets for each new individual vulnerability detected.
Python
•0•1•0•0•Updated Jun 11, 2024Jun 11, 2024
POAMBuddy
Public archive
[Not Production Ready] This repository automates the extraction vulnerability and flaw data from vulnerability sources and then generate a Plan of Actions and Milestones (POAM), addressing identified security issues effectively.
nist fedramp poam
JavaScript
•0•2•0•0•Updated Jun 11, 2024Jun 11, 2024
proof-of-concept-cloud-evidence-collection
Public archive
Point of Concept: To help to automate the collection of evidence for SOC 2 Audits and etc.
fedramp iso27001 soc2
Shell
•5•10•0•0•Updated May 13, 2024May 13, 2024