Skip to content

oleguldberg/OpenGRC

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

188 Commits
.cursor/rules
.cursor/rules
 
 
app
app
 
 
bootstrap
bootstrap
 
 
config
config
 
 
database
database
 
 
lang
lang
 
 
public
public
 
 
resources
resources
 
 
routes
routes
 
 
storage
storage
 
 
tests
tests
 
 
.dockerignore
.dockerignore
 
 
.env.example
.env.example
 
 
.env.testing
.env.testing
 
 
.gitignore
.gitignore
 
 
CLAUDE.md
CLAUDE.md
 
 
Dockerfile
Dockerfile
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 
artisan
artisan
 
 
composer.json
composer.json
 
 
composer.lock
composer.lock
 
 
entrypoint.sh
entrypoint.sh
 
 
generate-sbom.php
generate-sbom.php
 
 
install.sh
install.sh
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
phpstan.neon
phpstan.neon
 
 
phpunit.xml
phpunit.xml
 
 
pint.json
pint.json
 
 
postcss.config.js
postcss.config.js
 
 
sbom.json
sbom.json
 
 
set_permissions
set_permissions
 
 
tailwind.config.js
tailwind.config.js
 
 
update.sh
update.sh
 
 
vite.config.js
vite.config.js
 
 

Repository files navigation

OpenGRC Logo

Welcome to OpenGRC

OpenGRC is a cyber Governance, Risk, and Compliance web application intended for use by small businesses and teams. This is not intended to replace large-scale GRC Platforms, but it just might for your usecase. OpenGRC provides a resource for those who need to manage a security program but can't manage the price tag and complexity of alternatives.

  • Simple interface designed to get up and running with very little training
  • Quick imports of common security frameworks
  • Ability to connect Standards, Controls, and your actual Implementations
  • Ability to perform audits for internal and external assessments
  • Report generation capability to create deliverables for auditors
  • Intuitive dashboards to display your progress

Above all, OpenGRC is written to solve cyber compliance headaches that tend to be caused by complex enterprise solutions. It doesn't have to be that hard!

Documentation

All OpenGRC Documentation is maintained at https://docs.opengrc.com.

Contributing to OpenGRC

OpenGRC is an open-source project and we welcome contributions. Contribution guidelines will be published soon!

License

OpenGRC is licensed under the Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International

Exceptions:

  • Code Commits prior to April 14, 2025 are MIT Licensed.
  • Commercial use is permitted as long as resale of the OpenGRC code is not involved in any way. In other words, you may use this for your own company to help you in your own GRC endeavors.
  • Hosting of this software for customers - regardless of compensation - is not permitted.

Security

If you believe you have found a security vulnerability in OpenGRC, please report it to [email protected].

Acknowledgements

OpenGRC is built on the shoulders of giants. We would like to thank the following projects for their contributions, whether direct or indirect, to OpenGRC:

Code of Conduct

The OpenGRC code of conduct is derived from the Laravel and Ruby codes of conduct. Any violations of the code of conduct may be reported to Lee Mangold ([email protected]):

  • Participants will be tolerant of opposing views.
  • Participants must ensure that their language and actions are free of personal attacks and disparaging personal remarks.
  • When interpreting the words and actions of others, participants should always assume good intentions.
  • Behavior that can be reasonably considered harassment will not be tolerated.

About

OpenGRC

Resources

Readme

Security policy

Security policy
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • PHP 89.9%
  • Blade 7.5%
  • Shell 1.1%
  • Other 1.5%