Alternatives and similar repositories for oscal

Users that are interested in oscal are comparing it to the libraries listed below

• mitre / heimdall_tools
  DEPRECATED: A set of utilities for converting and working with compliance data for viewing in the heimdall applications
  ☆35Updated 4 years ago
• mitre / mitre-saf
  Landing Page Content/Builder for MITRE Security Automation Framework
  ☆29Updated 3 months ago
• mitre / heimdall-legacy
  A Security Results Viewer for the web with storage, teams and history
  ☆35Updated 3 years ago
• usnistgov / sctools
  Tools for security content automation, baseline tailoring, and overlay development.
  ☆45Updated last year
• mitre / vulcan
  A web application to streamline the development of STIGs from SRGs
  ☆83Updated 2 weeks ago
• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆55Updated last month
• mitre / emasser
  eMASSer is a command-line interface (CLI) that aims to automate routine business use-cases and provide utility surrounding the Enterprise…
  ☆46Updated last month
• JupiterOne / insights-dashboards
  A library of data visualization dashboard templates that can be imported into JupiterOne.
  ☆18Updated last month
• GSA / oscal-gen-tool
  ☆17Updated 4 years ago
• swagitda / security-decision-trees-graphviz
  Decision trees generated via Graphviz to inform pragmatic threat modelling.
  ☆11Updated 5 years ago
• ThreatResponse / aws_ir_plugins
  Core incident handling plugins for aws_ir cli, incident pony, and more.
  ☆21Updated 7 years ago
• CrowdStrike / falcon-integration-gateway
  Falcon Integration Gateway (FIG)
  ☆21Updated last week
• usnistgov / oscal-tools
  Tools for the OSCAL project
  ☆37Updated 2 years ago
• center-for-threat-informed-defense / defending-iaas-with-attack
  Defending IaaS with ATT&CK is a project to create a collection of ATT&CK techniques relevant to a Linux IaaS environment, as well as a me…
  ☆14Updated 8 months ago
• OTRF / sigma
  Generic Signature Format for SIEM Systems
  ☆14Updated 4 years ago
• GSA / security-benchmarks
  GSA Security Benchmarks and Tools
  ☆21Updated 6 years ago
• opencybersecurityalliance / PACE
  Posture Attribute Collection and Evaluation
  ☆23Updated 2 years ago
• tiburon-security / sriracha-iq
  Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…
  ☆18Updated 5 years ago
• brian-ruf / OSCAL-GUI
  Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI
  ☆47Updated 6 years ago
• gyrospectre / squyre
  Security Alert Decoration
  ☆27Updated 6 months ago
• GSA / oscal-ssp-to-word
  ☆19Updated 4 years ago
• opencybersecurityalliance / kestrel-jupyter
  Kestrel Jupyter Notebook Kernel
  ☆10Updated 2 years ago
• devsecops / firebolt
  A platform to create, catalog and deploy tests for tools such as Gauntlt, AttackIQ and Metasploit.
  ☆17Updated 9 years ago
• awsdocs / aws-security-hub-user-guide
  The open source version of the AWS Security Hub documentation. To provide feedback or request changes, you can submit a pull request that…
  ☆35Updated 2 years ago
• opencontrol / xccdf2csv
  Convert XCCDF files from DISA STIG and OpenSCAP Content into Comma Separated Values files making it easier to convert into potential Open…
  ☆16Updated 8 years ago
• ComplianceAsCode / auditree-framework
  The Auditree framework tool to run compliance control checks as unit tests.
  ☆71Updated last year
• kolide / docker-osquery
  Dockerfiles for containerized osquery
  ☆14Updated 8 years ago
• crypsisgroup / ebs-direct-sec-tools
  Fun tools around the EBS Direct API
  ☆19Updated 4 years ago
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆22Updated 2 years ago
• OpenSCAP / oval-graph
  Understand OVAL results in a blink of an eye
  ☆35Updated 3 years ago