complid (pronounced "comply dee") is a compliance daemon built with django.
Compliance is really nothing more than "doing stuff to things", the stuff are various requirements that must be done on or on behalf of the things, which are assets within the scope of the compliance program.
complid can be used to store information about any "stuff", for any "thing". I am currently consulting in the electric generation and transmission space, assisting clients implement cyber security programs, so this site uses complid to manage compliance to electric utitlity/nuclear generation cyber security requirements.
The information has been compiled from free sources of industry standard guidance or developed as part of the project. All of the information within the database is free in both cost and use: it does not cost anything to use the information, and; you can do what ever you'd like with the information. See the Terms of Use for more information.
The (mercurial) source code repository is available at bitbucket.org
The docs are coming eventually, in the meantime, I occasionally post at the blog here.

The buttons at the top of the page will take you to the start pages for the indicated object.

It is only fair to point out that this is a work in progress. A great deal of the eventual functionality (which will make Complid the greatest GRC app ever) is either not ready for inclusion or just flat out doesn't exist yet. Have patience. In the meantime, let us know if you like it, and let us know through email or through the blog how it could be improved.

None.
Seriously.
No kidding.
You may use it in any way, for any purpose, at any time. Make some dough, save the world, free willy... we don't judge.
complid was written to meet the purposes of its author, If you'd like it to do more (or less) or just something different entirely, the source and the data are available at bitbucket. The app is written in Python, using the Django web framework and jQuery.
For the complid code, the only restrictions you are under are self-imposed. Those restrictions are based soley on the quality of your character and your sense of propriety. That said; I do appreciate help, attribution, and hard money, so if you use and get value from this application, feel free to:
  • Link back here.
  • Contact me if you’d like to offer a Creator-Endorsed product.
  • Check the spot-price of silver and donate to my paypal account, I develop the app for me, I make it publicly available for you, at a cost.
For anyone (Read: IP lawyers and thier enablers... you know who you are) unsatisfied with the plain English of these terms, the software can also be used under either the BSD or MIT licenses and the database is also available under the Public Domain Dedication and License V1.0 whose full text can be found here.
Refer to the Software Used in complid panel for information on licensing of those libraries and applications.
Richard Dahl, an information security sensei, is the lead developer of the project. You can contact him here.
We are looking for:
People with Python (django), javascript (jquery), and CSS skills to participate in the development of the application.
We are also looking for security experts interesting in doing requirement importation and analysis or for people interested in using complid for other types (non-security) of compliance initiatives.
Contact us here if you’d like to contribute to the project.
View Richard Dahl's LinkedIn profileView Richard Dahl's profile
Powered by Django.
Web application framework
django-mptt
Modified Preordered Tree Traversal for django apps
jQuery UI
Javacript Library
jQuery UI
Javacript User Interface Library
datatables.net DataTables
jQuery table plugin