Repositories list

• cloud_provider_apis

  Public
  0•0•0•0•Updated Aug 12, 2025Aug 12, 2025

• RustWall

  Public
  Rust

  •

  MIT License

  •0•0•0•1•Updated Aug 10, 2025Aug 10, 2025

• Authorized-Pitch

  Public
  0•0•0•0•Updated Aug 9, 2025Aug 9, 2025

• InspectorGadget

  Public template
  Pulls scan results using the AWS Inspector API, combines various AWS Inspector scan results, and formats them scan results into an organized output that is POAM-ready.

  awspci-dssfedramp+ 3vulnerability-scanningiso-27001soc-2

  Python

  •

  Apache License 2.0

  •0•0•0•0•Updated Jul 31, 2025Jul 31, 2025

• grc-mockup

  Public
  HTML

  •0•1•1•0•Updated Jun 16, 2025Jun 16, 2025

• archives

  Public
  Cross-platform library to create & extract archives, compress & decompress files, and walk virtual file systems across various formats

  Go

  •

  MIT License

  •25•0•0•0•Updated May 6, 2025May 6, 2025

• ssp-control-implementation

  Public
  TypeScript

  •0•0•0•0•Updated May 6, 2025May 6, 2025

• fedramp-compliance-environment

  Public template
  HCL

  •0•0•0•0•Updated May 2, 2025May 2, 2025

• environment

  Public
  0•0•0•0•Updated May 2, 2025May 2, 2025

• asset-utility

  Public
  TypeScript

  •0•0•0•0•Updated Apr 26, 2025Apr 26, 2025

• vulmanger

  Public
  0•0•0•0•Updated Apr 26, 2025Apr 26, 2025

• UI

  Public
  TypeScript

  •0•0•0•0•Updated Apr 15, 2025Apr 15, 2025

• repo-python-template

  Public template
  Python

  •

  Apache License 2.0

  •0•0•0•2•Updated Apr 2, 2025Apr 2, 2025

• gosearch

  Public
  🔍 Search anyone's digital footprint across 300+ websites

  Go

  •

  GNU General Public License v3.0

  •244•0•0•0•Updated Mar 30, 2025Mar 30, 2025

• InfoSecRoadMap

  Public
  Creative Commons Attribution Share Alike 4.0 International

  •154•0•0•0•Updated Feb 25, 2025Feb 25, 2025

• Cloudits

  Public template
  Cloudit automates compliance with evidence collection. Cloudit streamlines vulnerability tracking, audit workflows, and compliance reporting by gathering artifacts, comparing findings, and generating actionable plans—keeping your organization audit-ready at all times.

  awssecurityjira+ 17azuregcpauditpci-dsscomplianceelasticgrc+ 10

  Python

  •

  Apache License 2.0

  •0•0•14•0•Updated Feb 21, 2025Feb 21, 2025

• Common_Controls

  Public
  0•0•0•0•Updated Feb 11, 2025Feb 11, 2025

• RampScout

  Public template
  Creates a Inventory Excel Spreadsheet Using FedRAMP Template for AWS, Azure, GCP

  awsnistazure+ 6gcpfedrampasset-managementtx-rampstaterampcloud-assets

  Python

  •

  Apache License 2.0

  •0•0•5•0•Updated Jan 27, 2025Jan 27, 2025

• TenableTrawler

  Public template
  TenableTrawler (Cloud OR FedCloud) is a Python project that pulls scan results via the Tenable API, laying them into organized, POAM-ready outputs. It supports various scans and exports in formats like CSV, JSON, and YAML.

  vulnerabilitynessusvulnerability-scanners+ 10fedramptenablevulnerability-scanningnessus-scannernessus-parseriso-27001poam+ 3

  Python

  •

  Apache License 2.0

  •0•1•2•0•Updated Jan 23, 2025Jan 23, 2025

• TheToolkit

  Public template
  Toolkit is a organized project of all of other projects into one if a organization needs to use them all.

  Apache License 2.0

  •0•0•0•0•Updated Jan 22, 2025Jan 22, 2025

• .github

  Public
  0•0•0•0•Updated Jan 15, 2025Jan 15, 2025

• terraform-aws-inspector

  Public
  Terraform module to provision AWS Inspector

  HCL

  •

  Apache License 2.0

  •15•0•0•0•Updated Jan 1, 2025Jan 1, 2025

• POAM-Pilot

  Public archive
  The POAM Pilot is a application designed to streamline the tracking, management, and reporting of security vulnerabilities and compliance requirements.

  nistfedramppoam+ 2tx-rampstateramp

  Python

  •

  Other

  •1•2•0•0•Updated Dec 23, 2024Dec 23, 2024

• github-action-atmos-component-updater

  Public
  GitHub Action that can be used as workflow for automatic update via Pull Requests infrastructure repository according to versions to components sources

  Python

  •

  Apache License 2.0

  •2•0•0•0•Updated Dec 23, 2024Dec 23, 2024

• AutoPilot-Audit

  Public archive
  This repository automates the collection and management of evidence from various tools and sources, committing the data for transparency and traceability. It's designed to gather evidence that tools like Vanta and others aren't built to collect.

  auditgrcfedramp+ 7evidencesoc2federalpoamevidence-collectiontx-rampstateramp

  Python

  •0•1•43•0•Updated Dec 19, 2024Dec 19, 2024

• AutoPilot-POAMatrix

  Public archive
  Focuses on automating the management of Plans of Action and Milestones (POAM) using GitHub Actions and various external integrations.

  sspfedramppoam+ 2tx-rampstateramp

  Python

  •0•2•0•0•Updated Dec 19, 2024Dec 19, 2024

• Informational

  Public
  securitypci-dsscompliance+ 5fedrampsoc2iso-27001soc-2stateramp

  0•0•41•0•Updated Oct 3, 2024Oct 3, 2024

• username-anarchy

  Public
  Username tools for penetration testing

  Ruby

  •

  MIT License

  •149•0•0•0•Updated Sep 20, 2024Sep 20, 2024

• AWS-RAMPpak

  Public
  Coalfire AWS RAMP/pak Reference Architecture

  HCL

  •

  MIT License

  •6•0•0•0•Updated Aug 29, 2024Aug 29, 2024

• RampControl

  Public archive
  RampControl manages and tracks security compliance per FedRAMP requirements. It allows users to add new system security plans, manage POA&M entries, and export data in OSCAL format.

  compliancegrcfedramp+ 3nist800-53poamgovernance-risk-compliance

  Python

  •1•1•4•0•Updated Jul 23, 2024Jul 23, 2024