A collection of awesome projects, blog posts, books, and talks on quantifying risk
-
Updated
Apr 13, 2020
A collection of awesome projects, blog posts, books, and talks on quantifying risk
Interactive CRQ Monte Carlo simulation tool for quantifying cybersecurity risk using FAIR methodology. Built for EU SMBs, vCISOs, and security practitioners.
FAIR cyber risk quantification toolkits, agent-based control simulation (FAIR-CAM), threat event frequency estimator (PyPI), LLM classification validator (PyPI), Monte Carlo risk engine with IRIS benchmarks.
Reusable decision-science utilities for security: Monte Carlo, Bayes, Survival, VoI, light causal helpers.
Bayesian risk modelling and quantification notebooks for cybersecurity
Cybersecurity risk intelligence dashboard analyzing CVE vulnerabilities, CVSS risk scores, and financial exposure using Power BI.
Bayesian-inspired Impact Forecast Algorithm (IFA) for quantifying material impact risk
Open-source data breach cost predictor & cyber-risk quantification engine — IBM benchmarks + DPDP/GDPR penalties + Monte Carlo + security-investment ROI
Agentic, controls-as-code GRC engine: one SCF-mapped control set → every framework. OSCAL-validated, FAIR-quantified, policy-as-code, human-gated AI. CI proves it.
Threat modeling case study applying PASTA (7-stage) and FAIR (Monte Carlo) to quantify ransomware risk in a HIPAA-regulated SaaS environment. Includes control investment ROI analysis and presentation talking points.
Vulnerability Financial Impact Engine — FAIR-lite Monte Carlo risk quantification that translates security findings into dollar-denominated expected loss
19 interactive Jupyter notebooks for statistical decision-making in security: Monte Carlo, Bayesian, survival analysis, causal inference, FAIR.
Vulnerability Financial Impact Engine — FAIR-lite Monte Carlo risk quantification that translates security findings into dollar-denominated expected loss
Simple risk quantification framework with scoring model and executive summary examples.
SMC model (Markov Chains + Attack Graphs) for cloud security risk quantification — 9-component architecture, Monte Carlo simulation, countermeasure scenario analysis. Validated against IBM X-Force & CSA 2022.
Industrial cybersecurity risk quantification platform for OT attacks and financial exposure
Add a description, image, and links to the risk-quantification topic page so that developers can more easily learn about it.
To associate your repository with the risk-quantification topic, visit your repo's landing page and select "manage topics."