mitre / heimdall2
Heimdall Enterprise Server 2 lets you view, store, and compare automated security control scan results.
☆218Updated this week
Alternatives and similar repositories for heimdall2:
Users that are interested in heimdall2 are comparing it to the libraries listed below
- The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools…☆147Updated this week
- A web application to streamline the development of STIGs from SRGs☆72Updated 2 weeks ago
- FedRAMP Automation☆313Updated this week
- Controls Assessment Specification☆69Updated this week
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.☆155Updated 2 weeks ago
- A command-line and ruby API of utilities, converters and tools for creating, converting and processing security baseline formats, results…☆92Updated 7 months ago
- Documentation on the OpenRMF application, including scripts to run the whole stack as well as just infrastructure with documentation on u…☆134Updated 2 weeks ago
- NIST SP 800-53 content and other OSCAL content examples☆331Updated 3 weeks ago
- A repository containing OSCAL serializations of the CIS Critical Security Controls☆48Updated last year
- Various deployments of the OSCAL editor☆46Updated 7 months ago
- An open source, self-service GRC tool to automate security assessments and compliance.☆186Updated 3 months ago
- Stakeholder-Specific Vulnerability Categorization☆140Updated this week
- 🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…☆382Updated 11 months ago
- Documenting your Threat Models with HCL☆425Updated 6 months ago
- Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI☆43Updated 5 years ago
- Built-in Panther detection rules and policies☆369Updated this week
- A Command-line tool which leverages the Tenable.io API to reduce the time it takes to get information that is common during remediation o…☆74Updated 6 months ago
- OWASP Foundation Web Respository☆23Updated last month
- A Security Results Viewer for the web with storage, teams and history☆35Updated 2 years ago
- Open Security Controls Assessment Language (OSCAL)☆712Updated last week
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆165Updated this week
- Dorothy is a tool to test security monitoring and detection for Okta environments☆179Updated 7 months ago
- An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.☆178Updated this week
- Software Component Verification Standard (SCVS)☆141Updated 11 months ago
- 🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept…☆490Updated 11 months ago
- A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.☆62Updated 4 years ago
- A collection of awesome security controls mapping for solutions across frameworks.☆55Updated 4 years ago
- NIST CyberSecurity Framework management tool☆161Updated 3 years ago
- This GitHub page shows the CISO Tradecraft Podcast broken down by Topic☆112Updated last week
- A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)☆193Updated 3 months ago