The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools developed by MITRE and the security community to streamline security automation for systems and DevOps pipelines
☆174Mar 3, 2026Updated this week
Alternatives and similar repositories for saf
Users that are interested in saf are comparing it to the libraries listed below
Sorting:
- Heimdall Enterprise Server 2 lets you view, store, and compare automated security control scan results.☆246Updated this week
- eMASSer is a command-line interface (CLI) that aims to automate routine business use-cases and provide utility surrounding the Enterprise…☆45Feb 19, 2026Updated 2 weeks ago
- A web application to streamline the development of STIGs from SRGs☆84Updated this week
- The eMASS client repository maintains the Enterprise Mission Assurance Support Service (eMASS) Representational State Transfer (REST) App…☆26Oct 21, 2025Updated 4 months ago
- Landing Page Content/Builder for MITRE Security Automation Framework☆29Updated this week
- The SAF Training Lab is a GitHub Codespaces environment that makes it quick and easy for you to use, learn and participate in the MITRE S…☆15Feb 25, 2025Updated last year
- OSCAL SSP content for technologies shipped by Red Hat☆16Mar 2, 2023Updated 3 years ago
- DEPRECATED: A set of utilities for converting and working with compliance data for viewing in the heimdall applications☆35Feb 5, 2022Updated 4 years ago
- A command-line and ruby API of utilities, converters and tools for creating, converting and processing security baseline formats, results…☆97Jul 29, 2024Updated last year
- This repository contains several courses to learn about using and developing SAF capabilities☆14Feb 26, 2026Updated last week
- A web front-end providing a REST-ful API to mount and unmount forensic disk images☆22Feb 14, 2026Updated 3 weeks ago
- A Java library to support processing OSCAL content☆37Dec 17, 2025Updated 2 months ago
- An ACAS/SCAP/CKL scan parser and report generator☆25Mar 1, 2021Updated 5 years ago
- STIG-CCI-CONTROLMAPPER☆17Jun 21, 2018Updated 7 years ago
- Docker build of GovReady☆14Nov 14, 2023Updated 2 years ago
- An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.☆237Updated this week
- InSpec profile to validate the secure configuration of Red Hat Enterprise Linux 7, against DISA's Red Hat Enterprise Linux 7 Security Tec…☆15Dec 15, 2025Updated 2 months ago
- An API and client for managing STIG assessments☆193Updated this week
- Migrate team-managed project issues between two JIRA Cloud accounts☆12Nov 12, 2024Updated last year
- Experimental CPSA -- the Cryptographic Protocol Shapes Analyzer experimental version☆21Updated this week
- A tool that automates the trevorc2 powershell agent obfuscation process with the pyfuscation tool☆15Jun 28, 2023Updated 2 years ago
- ☆16May 15, 2024Updated last year
- Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI☆48Feb 5, 2020Updated 6 years ago
- STIX data representing MITRE ATT&CK☆537Dec 23, 2025Updated 2 months ago
- Crane POAM Automation Tool (C-PAT™)☆15Updated this week
- ☆19Oct 19, 2021Updated 4 years ago
- Documentation on the OpenRMF application, including scripts to run the whole stack as well as just infrastructure with documentation on u…☆154Dec 2, 2025Updated 3 months ago
- Applies DISA STIGS GPO Policy's offline☆20Jul 30, 2019Updated 6 years ago
- Automated Adversary Emulation Platform☆6,781Updated this week
- TAXII 2.0 Server implemented in Node JS with MongoDB backend☆12Jan 3, 2023Updated 3 years ago
- Another MISP module for Python☆18Feb 17, 2020Updated 6 years ago
- Demo setup for compliance-trestle☆37Jan 28, 2026Updated last month
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.☆210Jun 25, 2025Updated 8 months ago
- An open source, self-service GRC tool to automate security assessments and compliance.☆207Dec 10, 2024Updated last year
- MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.☆68Apr 1, 2024Updated last year
- ☆19Oct 30, 2020Updated 5 years ago
- A CALDERA plugin☆26Oct 6, 2025Updated 5 months ago
- Automated PowerSTIG Repository for Active Directory environments☆42Nov 28, 2022Updated 3 years ago
- ☆10Dec 5, 2023Updated 2 years ago