Alternatives and similar repositories for oscal:

Users that are interested in oscal are comparing it to the libraries listed below

• mitre / mitre-saf
  Landing Page Content/Builder for MITRE Security Automation Framework
  ☆28Updated last month
• GSA / oscal-gen-tool
  ☆16Updated 3 years ago
• usnistgov / oscal-tools
  Tools for the OSCAL project
  ☆36Updated 2 years ago
• GSA / oscal-ssp-to-word
  ☆18Updated 3 years ago
• mitre / heimdall_tools
  DEPRECATED: A set of utilities for converting and working with compliance data for viewing in the heimdall applications
  ☆35Updated 3 years ago
• swagitda / security-decision-trees-graphviz
  Decision trees generated via Graphviz to inform pragmatic threat modelling.
  ☆11Updated 4 years ago
• GSA / threat-analysis
  ☆15Updated 3 years ago
• brian-ruf / OSCAL-GUI
  Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI
  ☆43Updated 5 years ago
• center-for-threat-informed-defense / defending-iaas-with-attack
  Defending IaaS with ATT&CK is a project to create a collection of ATT&CK techniques relevant to a Linux IaaS environment, as well as a me…
  ☆14Updated last year
• usnistgov / CloudSecurityArchitectureTool-CSAT-v0.1
  ☆20Updated 9 months ago
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆21Updated last year
• crypsisgroup / ebs-direct-sec-tools
  Fun tools around the EBS Direct API
  ☆18Updated 3 years ago
• NSWC-Crane / C-PAT
  Crane POAM Automation Tool
  ☆10Updated this week
• docker-archive / oscalkit
  NIST OSCAL SDK and CLI
  ☆38Updated 4 years ago
• EasyDynamics / oscal-rest-service
  Implementation of the OSCAL REST API
  ☆19Updated last year
• opencontrol / xccdf2csv
  Convert XCCDF files from DISA STIG and OpenSCAP Content into Comma Separated Values files making it easier to convert into potential Open…
  ☆16Updated 7 years ago
• boydjd / openfisma
  The OpenFISMA project is an open source application designed to reduce the complexity and automate the regulatory requirements of the Fed…
  ☆10Updated 9 years ago
• squinky86 / STIGQter
  Open Source STIG Viewer Reimplementation
  ☆22Updated 2 weeks ago
• risk-redux / control_freak
  NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations
  ☆39Updated 3 months ago
• gyrospectre / squyre
  Security Alert Decoration
  ☆27Updated 3 weeks ago
• usnistgov / oscal-deep-diff
  Open Security Controls Assessment Language (OSCAL) Deep Differencing Tool
  ☆34Updated last year
• mitre / emasser
  eMASSer is a command-line interface (CLI) that aims to automate routine business use-cases and provide utility surrounding the Enterprise…
  ☆40Updated 3 weeks ago
• kurmiashish / S3Insights
  S3Insights is a platform for efficiently deriving security insights about S3 data through metadata analysis
  ☆12Updated last month
• ramimac / breach-list-database
  A meta-database collecting resources that compile lists of breaches
  ☆18Updated 5 months ago
• GoComply / oscalkit
  NIST OSCAL SDK and CLI
  ☆19Updated 9 months ago
• ComplianceAsCode / ComplianceAsCode.github.io
  A ComplianceAsCode blog
  ☆27Updated 3 weeks ago
• usnistgov / sctools
  Tools for security content automation, baseline tailoring, and overlay development.
  ☆44Updated 7 months ago
• stevespringett / owasp-risk-rating-calculator
  A Java library for programmatically calculating OWASP Risk Rating scores
  ☆18Updated 2 years ago
• turbot / steampipe-plugin-virustotal
  Use SQL to instantly query file, domain, URL and IP scanning results from VirusTotal.
  ☆22Updated last week
• corelight / Corelight-Ansible-Roles
  Corelight-Ansible-Roles are a collection of Ansible Roles and playbooks that install, configure, run and manage a variety of Corelight, S…
  ☆16Updated 3 years ago