Quick Start
Get your first compliance score in under 5 minutes. This guide walks you through account creation, framework selection, integration setup, and your first automated scan.
Expected time: ~5 minutes
You'll have a live compliance score with at least one framework active and one integration connected by the end of this guide. No credit card required for the free trial.Overview
Claw GRC is designed to get you from zero to a compliance score fast. Unlike traditional GRC tools that require weeks of professional services to configure, Claw GRC has 1,026 controls pre-seeded across 11 frameworks. You activate a framework, connect an integration for automated evidence collection, and your score calculates in real time.
Create your account
~1 minNavigate to clawgrc.com/register and sign up with your work email. You'll create an organization during registration — use your company name as the organization name.
What's created automatically:
- Your user account with admin role
- Your organization with a unique
org_id - Default Risk Framework and Policy Defaults
- Sample dashboard data for the first 24 hours
Select your goal framework
~1 minAfter signing in, the onboarding wizard asks which compliance goal matters most. You can activate multiple frameworks, but start with your primary objective:
You can activate all frameworks later
The initial selection just determines your onboarding focus. From the Frameworks page you can activate any of the 11 frameworks at any time.Connect your first integration
~2 minIntegrations are what turn manual checkbox compliance into automated evidence collection. Connect at least one to start auto-populating evidence against your active framework controls.
Navigate to Dashboard → Integrations and connect one of:
- GitHub — For evidence of code review, branch protection, signed commits, and dependency scanning
- AWS CloudTrail — For access logs, infrastructure change tracking, and cloud security posture evidence
- Okta — For user access management, MFA enforcement, and privileged account evidence
Required: org-level permissions
Most integrations require admin-level permissions in the connected system. For GitHub, you'll need to install the Claw GRC GitHub App on your organization, not just a personal account.Run your first scan
~30 secNavigate to Dashboard → Scans and click Run Scan. Select the scan type:
- Dependency Scan — Identifies vulnerable packages in your connected repositories
- Secrets Detection — Finds leaked API keys, credentials, or tokens in code
- Configuration Audit — Reviews cloud configuration against CIS benchmarks
Scans typically complete in 30–120 seconds. Findings automatically create tickets and link to relevant framework controls.
Review your compliance score
~1 minReturn to the Dashboard. You'll now see:
- Overall Score Ring — Your weighted average compliance percentage across all active frameworks
- Framework Table — Per-framework scores with control counts and evidence gaps highlighted
- Recent Activity — Evidence auto-collected from your integration, scan findings, and any tickets created
You're live!
Your compliance posture is now being tracked in real time. Every evidence upload, scan, finding, and control status change is logged in the tamper-evident audit trail.What's Next?
Now that you have a live score, the most impactful next steps are:
Quick Reference: Key Keyboard Shortcuts
| Shortcut | Action |
|---|---|
| ⌘ K | Open global search / command palette |
| ⌘ / | Focus search bar |
| G + D | Go to Dashboard |
| G + F | Go to Frameworks |
| G + E | Go to Evidence |
| Esc | Close dialogs, command palette |