cisagov / development-guide
A set of guidelines and best practices for an awesome engineering team
☆225Updated this week
Alternatives and similar repositories for development-guide:
Users that are interested in development-guide are comparing it to the libraries listed below
- CISA's catalog of bad practices that are exceptionally risky.☆203Updated 4 months ago
- CISA's space for collaboration on the Cybersecurity Performance Goals.☆72Updated 4 months ago
- The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools…☆147Updated this week
- CISA is hiring! We’re looking for candidates passionate about our mission to lead the national effort to understand and manage cyber and …☆71Updated 4 months ago
- External monitoring for organization assets☆390Updated 9 months ago
- Dashboard for conducting Backdoors and Breaches sessions over Zoom.☆114Updated 5 months ago
- NIST SP 800-53 content and other OSCAL content examples☆333Updated last week
- A site for CISA directives☆160Updated 9 months ago
- A collection of awesome security controls mapping for solutions across frameworks.☆55Updated 4 years ago
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.☆156Updated 2 weeks ago
- Search a filesystem for indicators of compromise (IoC).☆70Updated last month
- These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…☆71Updated 5 months ago
- Cyber Incident Response Team Playbook Battle Cards☆373Updated 10 months ago
- 🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept…☆490Updated 11 months ago
- SCuBA Secure Configuration Baselines and assessment tool for Google Workspace☆209Updated this week
- OWASP Foundation Web Respository☆23Updated last month
- An open source, self-service GRC tool to automate security assessments and compliance.☆187Updated 3 months ago
- 🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…☆383Updated 11 months ago
- An API and client for managing STIG assessments☆140Updated this week
- An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…☆347Updated this week
- Controls Assessment Specification☆69Updated last week
- Passive service locator, a python sniffer that identifies servers, clients, names and much more☆249Updated 2 years ago
- This GitHub page shows the CISO Tradecraft Podcast broken down by Topic☆112Updated this week
- FedRAMP Automation☆317Updated this week
- Documentation on the Cyber Defense Matrix☆24Updated last year
- NIST CyberSecurity Framework management tool☆162Updated 3 years ago
- Windows Event Forwarding subscriptions, configuration files and scripts that assist with implementing ACSC's protect publication, Technic…☆217Updated last month
- Documentation on the OpenRMF application, including scripts to run the whole stack as well as just infrastructure with documentation on u…☆134Updated last week
- Heimdall Enterprise Server 2 lets you view, store, and compare automated security control scan results.☆218Updated last week
- ☆77Updated 2 years ago