cisagov / development-guide
A set of guidelines and best practices for an awesome engineering team
☆214Updated 2 weeks ago
Related projects ⓘ
Alternatives and complementary repositories for development-guide
- The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools…☆134Updated this week
- NIST SP 800-53 content and other OSCAL content examples☆310Updated 2 weeks ago
- CISA's catalog of bad practices that are exceptionally risky.☆203Updated 2 weeks ago
- External monitoring for organization assets☆372Updated 5 months ago
- These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…☆69Updated last month
- A collection of awesome security controls mapping for solutions across frameworks.☆52Updated 4 years ago
- Dashboard for conducting Backdoors and Breaches sessions over Zoom.☆112Updated last month
- NIST CyberSecurity Framework management tool☆157Updated 2 years ago
- CISA's space for collaboration on the Cybersecurity Performance Goals.☆70Updated 2 weeks ago
- FedRAMP Automation☆290Updated this week
- A site for CISA directives☆156Updated 5 months ago
- Documentation on the OpenRMF application, including scripts to run the whole stack as well as just infrastructure with documentation on u…☆126Updated 2 months ago
- Controls Assessment Specification☆65Updated 5 months ago
- 🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept…☆486Updated 7 months ago
- An API and client for managing STIG assessments☆120Updated this week
- Search a filesystem for indicators of compromise (IoC).☆68Updated 2 months ago
- Cyber Incident Response Team Playbook Battle Cards☆360Updated 6 months ago
- 🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…☆380Updated 7 months ago
- Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana☆286Updated last month
- InsightVM helpful SQL queries☆59Updated 5 months ago
- Passive service locator, a python sniffer that identifies servers, clients, names and much more☆243Updated last year
- An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)☆109Updated 4 months ago
- This GitHub page shows the CISO Tradecraft Podcast broken down by Topic☆110Updated last week
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.☆139Updated 4 months ago
- Public repo to sync with security-pr☆206Updated this week
- The Infosec Community Definitive Guide to Jupyter Notebooks☆115Updated 4 years ago
- Windows Event Forwarding subscriptions, configuration files and scripts that assist with implementing ACSC's protect publication, Technic…☆213Updated 2 years ago
- A Windows event logging and collection baseline focused on finding balance between forensic value and optimising retention.☆274Updated 3 years ago
- A repository containing OSCAL serializations of the CIS Critical Security Controls☆48Updated last year