Alternatives and similar repositories for oscal

Users that are interested in oscal are comparing it to the libraries listed below

• mitre / heimdall_tools
  DEPRECATED: A set of utilities for converting and working with compliance data for viewing in the heimdall applications
  ☆35Updated 3 years ago
• mitre / mitre-saf
  Landing Page Content/Builder for MITRE Security Automation Framework
  ☆29Updated 2 months ago
• GSA / oscal-gen-tool
  ☆16Updated 4 years ago
• usnistgov / sctools
  Tools for security content automation, baseline tailoring, and overlay development.
  ☆45Updated last year
• swagitda / security-decision-trees-graphviz
  Decision trees generated via Graphviz to inform pragmatic threat modelling.
  ☆11Updated 4 years ago
• mitre / vulcan
  A web application to streamline the development of STIGs from SRGs
  ☆82Updated last week
• usnistgov / oscal-tools
  Tools for the OSCAL project
  ☆36Updated 2 years ago
• mitre / heimdall-legacy
  A Security Results Viewer for the web with storage, teams and history
  ☆35Updated 2 years ago
• brian-ruf / OSCAL-GUI
  Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI
  ☆45Updated 5 years ago
• GSA / oscal-ssp-to-word
  ☆18Updated 4 years ago
• tiburon-security / sriracha-iq
  Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…
  ☆18Updated 5 years ago
• opencybersecurityalliance / PACE
  Posture Attribute Collection and Evaluation
  ☆24Updated 2 years ago
• mitre / emasser
  eMASSer is a command-line interface (CLI) that aims to automate routine business use-cases and provide utility surrounding the Enterprise…
  ☆46Updated 2 weeks ago
• GSA / security-benchmarks
  GSA Security Benchmarks and Tools
  ☆21Updated 6 years ago
• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆54Updated 2 weeks ago
• devsecops / firebolt
  A platform to create, catalog and deploy tests for tools such as Gauntlt, AttackIQ and Metasploit.
  ☆17Updated 9 years ago
• kbroughton / azure_cis_scanner
  Security Scanner based on CIS benchmark 1.1 inspired by Scout2
  ☆54Updated 2 years ago
• JupiterOne / insights-dashboards
  A library of data visualization dashboard templates that can be imported into JupiterOne.
  ☆18Updated 2 weeks ago
• cisagov / pe-reports
  Automated process to build and distribute Posture & Exposure Reports' bi-weekly to customers.
  ☆17Updated 5 months ago
• opendxl / opendxl-console
  OpenDXL Console is a high-level web-based console for interacting with a DXL fabric
  ☆11Updated 4 years ago
• ThreatResponse / aws_ir_plugins
  Core incident handling plugins for aws_ir cli, incident pony, and more.
  ☆21Updated 7 years ago
• opencybersecurityalliance / kestrel-jupyter
  Kestrel Jupyter Notebook Kernel
  ☆10Updated 2 years ago
• kolide / docker-osquery
  Dockerfiles for containerized osquery
  ☆14Updated 8 years ago
• ComplianceAsCode / ComplianceAsCode.github.io
  A ComplianceAsCode blog
  ☆30Updated last month
• CrowdStrike / falcon-integration-gateway
  Falcon Integration Gateway (FIG)
  ☆21Updated 3 weeks ago
• docker-archive / oscalkit
  NIST OSCAL SDK and CLI
  ☆38Updated 5 years ago
• OTRF / sigma
  Generic Signature Format for SIEM Systems
  ☆14Updated 4 years ago
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆22Updated 2 years ago
• opencontrol / xccdf2csv
  Convert XCCDF files from DISA STIG and OpenSCAP Content into Comma Separated Values files making it easier to convert into potential Open…
  ☆16Updated 8 years ago
• oscal-compass / compliance-trestle-demos
  Demo setup for compliance-trestle
  ☆35Updated 2 weeks ago