Open Security Controls Assessment Language (OSCAL)
☆878Apr 28, 2026Updated last week
Alternatives and similar repositories for OSCAL
Users that are interested in OSCAL are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- NIST SP 800-53 content and other OSCAL content examples☆430Apr 29, 2026Updated last week
- A simple open source command line tool to support common operations over OSCAL content.☆65Dec 19, 2025Updated 4 months ago
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.☆218Jun 25, 2025Updated 10 months ago
- An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.☆251Updated this week
- Tools for the OSCAL project☆38Mar 16, 2023Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Security Documentation Builder☆378Feb 16, 2026Updated 2 months ago
- Various deployments of the OSCAL editor☆49Jul 30, 2024Updated last year
- A Java library to support processing OSCAL content☆38Dec 17, 2025Updated 4 months ago
- Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI☆49Mar 27, 2026Updated last month
- Open Security Controls Assessment Language (OSCAL) Deep Differencing Tool☆39Apr 15, 2026Updated 2 weeks ago
- ☆19Oct 19, 2021Updated 4 years ago
- NIST OSCAL SDK and CLI☆39Apr 28, 2020Updated 6 years ago
- A library of React components and an example user interface application that provides a direct UI into NIST's Open Security Controls Asse…☆65Mar 5, 2026Updated 2 months ago
- Automatically generated diagrams for OSCAL models☆23Apr 12, 2022Updated 4 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- A case study for ACSAC 2022 utilizing OSCAL with a custom GitHub action to automate assessments.☆23Mar 1, 2023Updated 3 years ago
- A repository containing OSCAL serializations of the CIS Critical Security Controls☆61Mar 20, 2025Updated last year
- An open source, self-service GRC tool to automate security assessments and compliance.☆211Dec 10, 2024Updated last year
- Java tools and libraries providing a Metaschema toolchain☆15Oct 27, 2025Updated 6 months ago
- ☆18Jul 14, 2021Updated 4 years ago
- Open source tool for processing OSCAL based FedRAMP SSPs☆45Oct 14, 2024Updated last year
- Automate the creation of a System Security Plan (SSP)☆49Apr 27, 2026Updated last week
- OSCAL SSP content for technologies shipped by Red Hat☆16Mar 2, 2023Updated 3 years ago
- Scripts to import OSCAL example content into the Neo4J graph database☆34Jan 28, 2023Updated 3 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- hyperGRC is a lightweight, in-browser tool for managing compliance-as-code repositories in OpenControl format.☆29Jan 19, 2022Updated 4 years ago
- The Compliance Validator☆185Updated this week
- Repository for the generation of OSCAL data types☆30Updated this week
- Documentation on the OpenRMF application, including scripts to run the whole stack as well as just infrastructure with documentation on u…☆156Dec 2, 2025Updated 5 months ago
- NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations☆41Feb 25, 2026Updated 2 months ago
- A collection of security related user stories compatible with NIST Special Publication 800-53☆38Mar 14, 2017Updated 9 years ago
- Tools for security content automation, baseline tailoring, and overlay development.☆45Aug 30, 2024Updated last year
- NIST OSCAL SDK and CLI☆23Feb 1, 2026Updated 3 months ago
- STIG-CCI-CONTROLMAPPER☆17Jun 21, 2018Updated 7 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- ☆13Nov 18, 2025Updated 5 months ago
- Compliance-to-Policy (C2P) provides the framework to bridge the gap between compliance and policy administration in Go.☆27Apr 24, 2026Updated last week
- Config files for my GitHub profile.☆479Apr 24, 2026Updated last week
- The community area and documents about Code of Conduct.☆18Feb 5, 2021Updated 5 years ago
- YAML schema, examples, and validators for OpenControl format.☆77Jun 4, 2019Updated 6 years ago
- Open Security Controls Assessment Language Toolbox☆18Apr 22, 2026Updated 2 weeks ago
- The Auditree framework tool to run compliance control checks as unit tests.☆73Aug 20, 2024Updated last year