Complete AI governance and LLM Evals platform with support for EU AI Act, ISO 42001, NIST AI RMF and 20+ more AI frameworks and regulations. Join our Discord channel: https://discord.com/invite/d3k3E4uEpR

The open-source diagnostic for AI misalignment. 32 tests across fabrication, manipulation, deception, unpredictability, and opacity. Provider-agnostic. Runs against OpenAI, Anthropic, Bedrock, Azure, Gemini, and more. Letter grade in under 5 minutes, content-addressed manifest for bit-identical replay. Built by iMe.

The Universal Governance, Risk, Compliance (GRC) Operating System with Integrated Security for Agentic AI, Non-Human Identities, and Swarm Governance. AI SAFE² + AI Sovereignty Maturity Model (AISM) [Dual License: MIT + CC-BY-SA]

Static security scanner for AI agents. Catches prompt injection, runaway loops, missing oversight, and compliance gaps across 21 frameworks. Use from Claude Code, Cursor, ChatGPT (MCP), the CLI, or GitHub Actions.

Zero-dependency TypeScript SDK for AI agent governance: policy enforcement, injection detection, tamper-evident audit, and standards mapping (EU AI Act, OWASP, NIST, ISO 42001)

Open-source AI agent security framework. Score, harden, and govern your AI agents. Built on DoD/DISA zero-trust principles.

NIST AI RMF applied to a real research cluster. We govern our own AI tools, document decisions, and share templates. Practical governance for small teams.

The most comprehensive open-source mapping of OWASP GenAI risks to industry frameworks — 37 files, 16 frameworks, 3 source lists: LLM Top 10, Agentic Top 10, DSGAI 2026. OT/ICS, EU AI Act, NIST, ISO 27001, ISO 42001, CIS, SAMM, ENISA, NHI, AIVSS.

nod is a platform-agnostic, rule-based linter that ensures AI/LLM specifications contain critical security and compliance elements before any agentic or automated development begins.

Operationalizes PM insights through working agents grounded in GRC best practices. Provides prompt libraries and tools to identify governance and compliance risks before scaling programs, analytics initiatives, or AI systems.

Model evaluations for Responsible AI: We evaluate frontier LLMs for responsible AI safety and robustness, map results to the NIST AI Risk Management Framework, and publish the findings to a public dashboard. We run a structured adversarial benchmark against models from Anthropic, OpenAI, and Google, scores them using a deterministic judge (Haiku).

Non-Human Identity Disclosure Standard for Healthcare Voice Workflows

A practical implementation toolkit for ISO/IEC 42001:2023 AI Management Systems — gap assessment checklists, risk register templates, controls mapping, and implementation roadmap for GRC professionals and AI governance practitioners.

Comprehensive, auto-updating literature review of GenAI & LLM security research, standards, tools, and resources. 100+ curated entries with interactive webapp.

A practical guide to AI ethics and responsibility, built from a real-world incident — and from the body of work that came after.

Self-hosted AI Model Governance & Inventory for Government & Enterprise. Aligned with NIST AI RMF & EU AI Act.

White-paper & talk covering benefits, risks, and mitigation frameworks for AI and LLMs in cybersecurity (NIST AI RMF, OWASP Top 10 for LLMs, MITRE ATLAS, real-world case studies)

A browser-based Microsoft Defender for Endpoint audit tracker for MSSP security engineers, mapping ~270 tasks across multiple frameworks including — NIST CSF 2.0, Cyber Essentials, SOC 2, and NIST 800-53. Features per-task status, notes, live progress metrics, framework switching, dark/light mode, and CSV, HTML, and JSON export.

Open-source compliance reference toolkit for healthcare LLM applications. Maps HIPAA, NIST AI RMF, FDA AI/ML SaMD, ISO/IEC 42001, EU AI Act, and SOC 2 into a single auditor-ready evidence pipeline.

Curated AI governance, risk, and compliance resources - frameworks, learning paths, certifications, and tools for GRC professionals