CISO Assistant is a one-stop-shop for GRC, covering Risk, AppSec, Compliance/Audit Management, Privacy and supporting +100 frameworks worldwide with auto-mapping: NIST CSF, ISO 27001, SOC2, CIS, PCI DSS, NIS2, CMMC, PSPF, GDPR, HIPAA, Essential Eight, NYDFS-500, DORA, NIST AI RMF, 800-53, CyFun, AirCyber, NCSC, ECC, SCF and so much more

• UpdatedDec 16, 2025
• Python

Compliance automation framework, focused on SOC2

• UpdatedJul 21, 2022
• Go

AI Native platform to get companies compliant - Vanta & Drata Alternative

• UpdatedDec 16, 2025
• TypeScript

Open source solutions for SOC2, GDPR, and ISO27001

• UpdatedDec 16, 2025
• Go

Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking

• UpdatedJul 8, 2025
• HTML

Useful templates and working document for implementing ISO 27001 - ISMS

• UpdatedDec 15, 2025
• Rich Text Format

Open Source Data Protection/Privacy Regulatory Mapping Project

• UpdatedJun 11, 2023
• TypeScript

Open source compliance automation for SOC 2, GDPR, ISO27001, NIST 800-53, and more

• UpdatedDec 17, 2025
• Go

Complete AI governance platform with support for ISO 42001, ISO 27001, NIST AI RMF and EU AI Act. Join our Discord channel:https://discord.com/invite/d3k3E4uEpR

• UpdatedDec 17, 2025
• TypeScript

A modern, all-in-one Governance, Risk & Compliance (GRC) solution designed for privacy, security, and compliance teams. As an open-source alternative to Vanta and Drata, this platform empowers teams with full control, flexibility, and transparency—no vendor lock-in, just powerful compliance automation and risk management. ISO27k, GDPR, SOC2, NIST

• UpdatedNov 24, 2025
• TypeScript

Secure SDLC process template

• UpdatedOct 6, 2025
• HTML

SOC 2 should be easy to get done and it should be inexpensive. Here's everything you wanted to know.

• UpdatedDec 6, 2025
• Vue

Python toolkit for automating system maintenance and generating patch reports along with Foreman/Katello and Red Hat Satellite 6.x

• UpdatedApr 24, 2023
• Python

This repository is dedicated to providing resources, information, and tools related to the NIS2 Directive, a European Union regulation aimed at improving the security of network and information systems across the EU.

• UpdatedApr 17, 2025

ISO 27001 Toolkit by QZ

• UpdatedDec 12, 2022

PowerShell script to generate daily audit report, like Logwatch for Windows

• UpdatedDec 1, 2025
• PowerShell

Un repositorio con plantillas y documentacion importante de ISO 27001.

• UpdatedJun 9, 2022

Open source cyber-serenity platform that help the security teams designing and managing companies' ISMS, and which allow them to create resilient digital systems with efficient responses against to cyber-threats.

• UpdatedNov 27, 2025
• Java

Hack23 Public Information Security Management System:Security Through Transparency and Open Documentation Demonstrating Security Excellence Through Public ISMS Disclosure

• UpdatedDec 2, 2025

Oxomium is a cybersecurity gouvernance and conformity (GRC) tool for CISCO and SECOPS. By linking framework requirements, controld scheduling and execution, audit findings and more, Oxomium helps to reduce administrative work and to provide an real time overview of your cybersecurity posture.

• UpdatedDec 4, 2025
• Python