The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools developed by MITRE and the security community to streamline security automation for systems and DevOps pipelines
☆178Jun 9, 2026Updated last week
Alternatives and similar repositories for saf
Users that are interested in saf are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Heimdall Enterprise Server 2 lets you view, store, and compare automated security control scan results.☆253Updated this week
- eMASSer is a command-line interface (CLI) that aims to automate routine business use-cases and provide utility surrounding the Enterprise…☆48May 6, 2026Updated last month
- A web application to streamline the development of STIGs from SRGs☆86Updated this week
- The eMASS client repository maintains the Enterprise Mission Assurance Support Service (eMASS) Representational State Transfer (REST) App…☆27Mar 31, 2026Updated 2 months ago
- Landing Page Content/Builder for MITRE Security Automation Framework☆29Mar 1, 2026Updated 3 months ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- DEPRECATED: A set of utilities for converting and working with compliance data for viewing in the heimdall applications☆35Feb 5, 2022Updated 4 years ago
- Benchmark Generator to create skeleton Ansible content from baseline XCCDF files.☆10Sep 10, 2020Updated 5 years ago
- A command-line and ruby API of utilities, converters and tools for creating, converting and processing security baseline formats, results…☆98Jul 29, 2024Updated last year
- An API and client for managing STIG assessments☆220Updated this week
- InSpec profile to validate the secure configuration of Red Hat Enterprise Linux 7, against DISA's Red Hat Enterprise Linux 7 Security Tec…☆15Dec 15, 2025Updated 6 months ago
- OSCAL SSP content for technologies shipped by Red Hat☆16Mar 2, 2023Updated 3 years ago
- An ACAS/SCAP/CKL scan parser and report generator☆25Mar 1, 2021Updated 5 years ago
- Experimental CPSA -- the Cryptographic Protocol Shapes Analyzer experimental version☆22Updated this week
- Archived from chef-cookbooks/testing_examples - A repo of example testing files☆13Feb 18, 2026Updated 3 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- STIG-CCI-CONTROLMAPPER☆17Jun 21, 2018Updated 7 years ago
- ***MERGED: SEE README:*** The XCCDF to InSpec parser scans and extracts the controls defined in the DISA XCCDF STIG XML documents and con…☆12Nov 23, 2018Updated 7 years ago
- Documentation on the OpenRMF application, including scripts to run the whole stack as well as just infrastructure with documentation on u…☆160May 23, 2026Updated 3 weeks ago
- Official repository for the Open Vulnerability and Assessment Language☆102Jun 6, 2026Updated last week
- Another MISP module for Python☆18Feb 17, 2020Updated 6 years ago
- Automated Adversary Emulation Platform☆7,041Updated this week
- ☆38Jan 30, 2025Updated last year
- STIX data representing MITRE ATT&CK☆585May 18, 2026Updated 3 weeks ago
- ☆16May 15, 2024Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Daily archiver & triage issue creator for new releases of CISA's Known Exploited Vulnerabilities list☆39Updated this week
- Automated PowerSTIG Repository for Active Directory environments☆43Nov 28, 2022Updated 3 years ago
- Powerful XML<->JSON JavaScript mapping library.☆15Apr 29, 2026Updated last month
- A Zeek package that detects Zoom logins and meeting joins☆12Apr 15, 2020Updated 6 years ago
- An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.☆258Updated this week
- ☆10Jul 1, 2022Updated 3 years ago
- Generic Signature Format for SIEM Systems☆14Oct 27, 2021Updated 4 years ago
- Docker build of GovReady☆14Nov 14, 2023Updated 2 years ago
- AWS audits, without screenshots☆38May 23, 2026Updated 3 weeks ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Repository of SCAP content developed fully or in part by the NIWC Atlantic SCAP team☆48Updated this week
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.☆224Jun 25, 2025Updated 11 months ago
- Applies DISA STIGS GPO Policy's offline☆21Jul 30, 2019Updated 6 years ago
- Privateer is a plugin-based framework for security & compliance evaluations.☆22Jun 5, 2026Updated last week
- A pair of scripts to import session and local group information that has been collected from alternate data sources into BloodHound's Neo…☆21Aug 29, 2022Updated 3 years ago
- ☆35Jun 22, 2021Updated 4 years ago
- An python script that use apkleaks to scan the android application over web☆11Jun 2, 2022Updated 4 years ago