Alternatives and similar repositories for oscal

Users that are interested in oscal are comparing it to the libraries listed below

• GSA / oscal-gen-tool
  ☆16Updated 3 years ago
• mitre / mitre-saf
  Landing Page Content/Builder for MITRE Security Automation Framework
  ☆29Updated last month
• mitre / heimdall_tools
  DEPRECATED: A set of utilities for converting and working with compliance data for viewing in the heimdall applications
  ☆35Updated 3 years ago
• brian-ruf / OSCAL-GUI
  Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI
  ☆44Updated 5 years ago
• RedHatGov / ocdb
  OpenControl Database
  ☆11Updated 2 years ago
• swagitda / security-decision-trees-graphviz
  Decision trees generated via Graphviz to inform pragmatic threat modelling.
  ☆11Updated 4 years ago
• mitre / heimdall-legacy
  A Security Results Viewer for the web with storage, teams and history
  ☆35Updated 2 years ago
• kurmiashish / S3Insights
  S3Insights is a platform for efficiently deriving security insights about S3 data through metadata analysis
  ☆12Updated 3 weeks ago
• docker-archive / oscalkit
  NIST OSCAL SDK and CLI
  ☆38Updated 5 years ago
• GSA / oscal-ssp-to-word
  ☆18Updated 3 years ago
• mitre / emasser
  eMASSer is a command-line interface (CLI) that aims to automate routine business use-cases and provide utility surrounding the Enterprise…
  ☆41Updated 2 weeks ago
• ComplianceAsCode / ComplianceAsCode.github.io
  A ComplianceAsCode blog
  ☆27Updated 2 months ago
• usnistgov / oscal-tools
  Tools for the OSCAL project
  ☆37Updated 2 years ago
• center-for-threat-informed-defense / defending-iaas-with-attack
  Defending IaaS with ATT&CK is a project to create a collection of ATT&CK techniques relevant to a Linux IaaS environment, as well as a me…
  ☆14Updated last month
• usnistgov / sctools
  Tools for security content automation, baseline tailoring, and overlay development.
  ☆44Updated 10 months ago
• tenable / cloud-security-actions
  ☆12Updated 3 months ago
• WarnerMedia / aws-guardduty-enterprise
  Manage GuardDuty At Enterprise Scale
  ☆22Updated 4 years ago
• mitre / aws-rds-infrastructure-cis-baseline
  InSpec Profile to validate the secure configuration of aws-rds-infrastructure-cis-baseline, against CIS's Amazon Web Services Three-tier …
  ☆14Updated 3 years ago
• EasyDynamics / oscal-rest-service
  Implementation of the OSCAL REST API
  ☆19Updated last year
• riski-io / grc
  An open source Governance Risk Compliance (GRC) solution for corporates and government
  ☆27Updated 8 years ago
• opencontrol / xccdf2csv
  Convert XCCDF files from DISA STIG and OpenSCAP Content into Comma Separated Values files making it easier to convert into potential Open…
  ☆16Updated 8 years ago
• usnistgov / CloudSecurityArchitectureTool-CSAT-v0.1
  ☆21Updated 11 months ago
• CrowdStrike / falcon-integration-gateway
  Falcon Integration Gateway (FIG)
  ☆19Updated 2 months ago
• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆54Updated last year
• JupiterOne / insights-dashboards
  A library of data visualization dashboard templates that can be imported into JupiterOne.
  ☆17Updated 5 months ago
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆21Updated 2 years ago
• cisagov / nessus-packer
  Create machine images containing the Nessus vulnerability scanner
  ☆13Updated last week
• ansorren / GDPatrol
  A Lambda-powered Security Orchestration framework for AWS GuardDuty
  ☆52Updated 5 years ago
• GoComply / oscalkit
  NIST OSCAL SDK and CLI
  ☆19Updated last week
• stevespringett / owasp-risk-rating-calculator
  A Java library for programmatically calculating OWASP Risk Rating scores
  ☆18Updated 2 years ago