Alternatives and similar repositories for oscal

Users that are interested in oscal are comparing it to the libraries listed below

• mitre / mitre-saf
  Landing Page Content/Builder for MITRE Security Automation Framework
  ☆29Updated last week
• GSA / oscal-ssp-to-word
  ☆18Updated 3 years ago
• RedHatGov / ocdb
  OpenControl Database
  ☆11Updated 2 years ago
• GSA / oscal-gen-tool
  ☆16Updated 3 years ago
• center-for-threat-informed-defense / defending-iaas-with-attack
  Defending IaaS with ATT&CK is a project to create a collection of ATT&CK techniques relevant to a Linux IaaS environment, as well as a me…
  ☆14Updated 3 weeks ago
• swagitda / security-decision-trees-graphviz
  Decision trees generated via Graphviz to inform pragmatic threat modelling.
  ☆11Updated 4 years ago
• usnistgov / oscal-tools
  Tools for the OSCAL project
  ☆36Updated 2 years ago
• docker-archive / oscalkit
  NIST OSCAL SDK and CLI
  ☆38Updated 5 years ago
• mitre / heimdall_tools
  DEPRECATED: A set of utilities for converting and working with compliance data for viewing in the heimdall applications
  ☆35Updated 3 years ago
• kurmiashish / S3Insights
  S3Insights is a platform for efficiently deriving security insights about S3 data through metadata analysis
  ☆12Updated this week
• crypsisgroup / ebs-direct-sec-tools
  Fun tools around the EBS Direct API
  ☆18Updated 4 years ago
• brian-ruf / OSCAL-GUI
  Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI
  ☆43Updated 5 years ago
• usnistgov / CloudSecurityArchitectureTool-CSAT-v0.1
  ☆21Updated 11 months ago
• GoComply / oscalkit
  NIST OSCAL SDK and CLI
  ☆19Updated this week
• aquasecurity / saas-api-samples
  Sample code snippets for consuming the CloudSploit API
  ☆13Updated last year
• opencontrol / xccdf2csv
  Convert XCCDF files from DISA STIG and OpenSCAP Content into Comma Separated Values files making it easier to convert into potential Open…
  ☆16Updated 7 years ago
• WarnerMedia / aws-guardduty-enterprise
  Manage GuardDuty At Enterprise Scale
  ☆22Updated 4 years ago
• EasyDynamics / oscal-rest-service
  Implementation of the OSCAL REST API
  ☆19Updated last year
• cisagov / nessus-packer
  Create machine images containing the Nessus vulnerability scanner
  ☆13Updated this week
• ThreatResponse / aws_ir_plugins
  Core incident handling plugins for aws_ir cli, incident pony, and more.
  ☆21Updated 6 years ago
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆21Updated 2 years ago
• GSA / threat-analysis
  ☆15Updated 3 years ago
• usnistgov / sctools
  Tools for security content automation, baseline tailoring, and overlay development.
  ☆44Updated 9 months ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆22Updated 7 months ago
• NSWC-Crane / C-PAT
  Crane POAM Automation Tool
  ☆12Updated this week
• ramimac / breach-list-database
  A meta-database collecting resources that compile lists of breaches
  ☆20Updated 7 months ago
• GoComply / fedramp
  Open source tool for processing OSCAL based FedRAMP SSPs
  ☆41Updated 8 months ago
• stevespringett / owasp-risk-rating-calculator
  A Java library for programmatically calculating OWASP Risk Rating scores
  ☆18Updated 2 years ago
• GovReady / govready-deployments
  Docker build of GovReady
  ☆14Updated last year
• CrowdStrike / falcon-integration-gateway
  Falcon Integration Gateway (FIG)
  ☆18Updated last month