coolstartnow / isms-builder

Public

Self-hosted Information Security Management System — ISO 27001, NIS2, GDPR/DSGVO, BSI IT-Grundschutz

github.comcoolstartnowisms-builder bsi compliance express gdpr isms

100% credibility

Found Mar 10, 2026 at 45 stars -- GitGems finds repos before they trend. Get early access to the next one.

AI Analysis

JavaScript

AI Summary

ISMS Builder is a self-hosted web platform for small businesses and consultants to manage information security compliance across standards like ISO 27001, NIS2, GDPR, and BSI without cloud dependencies.

How It Works

🔍 Discover ISMS Builder

You find this free self-hosted tool online while searching for easy ways to manage company security compliance without cloud services.

📥 Download and start locally

Download the files and launch it on your own computer or server following simple setup steps.

🚀 Log in and see dashboard

Enter the demo login to instantly view your security dashboard with all modules like risks, policies, and reports ready to explore.

📝 Add your security details

Enter your company's policies, track risks, assets, trainings, and suppliers across standards like ISO 27001 and GDPR.

📊 Check compliance status

Review which security controls apply to your business and mark what's implemented or planned.

📈 Generate reports

Create compliance summaries, gap analyses, and export ready-to-use reports for audits or management reviews.

✅ Achieve certified compliance

Your ISMS is fully documented, auditable, and ready for certification – all data stays securely on your server.

Sign up to see the full architecture

5 more

Star Growth

See how this repo grew from 45 to 71 stars Sign Up Free

Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose

AI-Generated Review

What is isms-builder?

isms-builder is a self-hosted JavaScript web app for running a full Information Security Management System (ISMS), covering ISO 27001, NIS2, GDPR/DSGVO, and BSI IT-Grundschutz. It manages policies, risks, assets, training, suppliers, and audits via a dark-themed dashboard with semantic search and reports. Spin it up with Docker or npm start for local HTTPS/SQLite, keeping compliance data entirely on your server—no cloud needed.

Why is it gaining traction?

Stands out as a self-hosted GitHub alternative for compliance: Docker-ready like a self-hosted GitHub runner, with optional Ollama for local AI search across 313 controls in 8 frameworks. Daily email digests flag risks, expiring contracts, and DSAR deadlines; exports CSV matrices and gap analyses. Beats pricey SaaS with zero lock-in and real audit trails.

Who should use this?

CISOs in SMEs prepping for 27001 certification or NIS2 reporting. IT-Grundschutz teams tracking GDPR/DSGVO VVT, incidents, and TOMs. Consultants building multi-entity ISMS for clients, needing quick policy CRUD, risk registers, and SoA without vendor fees.

Verdict

Solid docs, Docker Compose quickstart, and 176 passing tests make it dev-friendly, but 26 stars and 1.0% credibility score mean it's early—run in staging first. Worth forking if you need a self-hosted ISMS builder now.

(178 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.

Stars

Forks

Followers

Base stars: 71 stars

Penalty: New account (15d): -70%

Penalty: New account with popular repo: -90%

Bonus: AI verified quality (100%)

Account age: 15 days

Repo age: 5 days

License: NOASSERTION

Updated: Mar 15, 2026