2,237 skills found · Page 1 of 75
CISOfy / LynisLynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
wazuh / WazuhWazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
prowler-cloud / ProwlerProwler is the world’s most widely used open-source cloud security platform that automates security and compliance across any cloud environment.
open-policy-agent / OpaOpen Policy Agent (OPA) is an open source, general-purpose policy engine.
kubescape / KubescapeKubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.
codenotary / Immudbimmudb - immutable database based on zero trust, SQL/Key-Value/Document model, tamperproof, data change history
bridgecrewio / CheckovPrevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
aquasecurity / TfsecTfsec is now part of Trivy
superagent-ai / SuperagentSuperagent protects your AI applications against prompt injections, data leaks, and harmful outputs. Embed safety directly into your app and prove compliance to your customers.
alirezarezvani / Claude Skills+192 Claude Code skills & agent plugins for Claude Code, Codex, Gemini CLI, Cursor, and 8 more coding agents — engineering, marketing, product, compliance, C-level advisory.
cloud-custodian / Cloud CustodianRules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources
deepfence / ThreatMapperOpen Source Cloud Native Application Protection Platform (CNAPP)
tenable / TerrascanDetect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
ossec / Ossec HidsOSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
HotCakeX / Harden Windows SecurityHarden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Personal, Enterprise, Government and Military security levels | SLSA Level 3 Compliant for Secure Development and Build Process | Apps Available on MS Store✨
FastForwardTeam / FastForwardDon't waste your time with compliance. FastForward automatically skips annoying link shorteners.
intuitem / Ciso Assistant CommunityCISO Assistant is a one-stop-shop GRC platform for Risk Management, AppSec, Compliance & Audit, TPRM, Privacy, and Reporting. It supports 100+ global frameworks with automatic control mapping, including ISO 27001, NIST CSF, SOC 2, CIS, PCI DSS, NIS2, DORA, GDPR, HIPAA, CMMC, and more.
inspec / InspecInSpec: Auditing and Testing Framework
ElementsProject / LightningCore Lightning — Lightning Network implementation focusing on spec compliance and performance
yannh / KubeconformA FAST Kubernetes manifests validator, with support for Custom Resources!
