usnistgov/OSCAL external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

usnistgov/OSCAL

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/usnistgov/OSCAL)

Close

usnistgov / OSCALView on GitHubMore

• External links
• Readme badge

Open Security Controls Assessment Language (OSCAL)

☆857Mar 17, 2026Updated last week

Alternatives and similar repositories for OSCAL

Users that are interested in OSCAL are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• usnistgov / oscal-content

  View on GitHub
  NIST SP 800-53 content and other OSCAL content examples
  ☆423Mar 18, 2026Updated last week
• GSA / fedramp-automation

  View on GitHub
  FedRAMP Automation
  ☆354Apr 7, 2025Updated 11 months ago
• oscal-club / awesome-oscal

  View on GitHub
  A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.
  ☆213Jun 25, 2025Updated 9 months ago
• usnistgov / oscal-cli

  View on GitHub
  A simple open source command line tool to support common operations over OSCAL content.
  ☆62Dec 19, 2025Updated 3 months ago
• oscal-compass / compliance-trestle

  View on GitHub
  An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.
  ☆240Updated this week
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• usnistgov / oscal-tools

  View on GitHub
  Tools for the OSCAL project
  ☆37Mar 16, 2023Updated 3 years ago
• opencontrol / compliance-masonry

  View on GitHub
  Security Documentation Builder
  ☆377Feb 16, 2026Updated last month
• EasyDynamics / oscal-editor-deployment

  View on GitHub
  Various deployments of the OSCAL editor
  ☆49Jul 30, 2024Updated last year
• usnistgov / liboscal-java

  View on GitHub
  A Java library to support processing OSCAL content
  ☆37Dec 17, 2025Updated 3 months ago
• brian-ruf / OSCAL-GUI

  View on GitHub
  Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI
  ☆49Feb 5, 2020Updated 6 years ago
• usnistgov / oscal-deep-diff

  View on GitHub
  Open Security Controls Assessment Language (OSCAL) Deep Differencing Tool
  ☆38Mar 19, 2026Updated last week
• docker-archive / oscalkit

  View on GitHub
  NIST OSCAL SDK and CLI
  ☆39Apr 28, 2020Updated 5 years ago
• GSA / oscal-ssp-to-word

  View on GitHub
  ☆19Oct 19, 2021Updated 4 years ago
• EasyDynamics / oscal-react-library

  View on GitHub
  A library of React components and an example user interface application that provides a direct UI into NIST's Open Security Controls Asse…
  ☆65Mar 5, 2026Updated 2 weeks ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• cyght-io / oscal-diagrams

  View on GitHub
  Automatically generated diagrams for OSCAL models
  ☆22Apr 12, 2022Updated 3 years ago
• usnistgov / blossom-case-study

  View on GitHub
  A case study for ACSAC 2022 utilizing OSCAL with a custom GitHub action to automate assessments.
  ☆23Mar 1, 2023Updated 3 years ago
• CISecurity / CISControls_OSCAL

  View on GitHub
  A repository containing OSCAL serializations of the CIS Critical Security Controls
  ☆61Mar 20, 2025Updated last year
• GovReady / govready-q

  View on GitHub
  An open source, self-service GRC tool to automate security assessments and compliance.
  ☆207Dec 10, 2024Updated last year
• EasyDynamics / oscal-rest

  View on GitHub
  An initial OpenAPI definition of an OSCAL REST API.
  ☆42Sep 18, 2024Updated last year
• usnistgov / metaschema-java

  View on GitHub
  Java tools and libraries providing a Metaschema toolchain
  ☆15Oct 27, 2025Updated 4 months ago
• GSA / oscal-gen-tool

  View on GitHub
  ☆18Jul 14, 2021Updated 4 years ago
• oscal-compass / compliance-trestle-demos

  View on GitHub
  Demo setup for compliance-trestle
  ☆38Jan 28, 2026Updated last month
• GoComply / fedramp

  View on GitHub
  Open source tool for processing OSCAL based FedRAMP SSPs
  ☆44Oct 14, 2024Updated last year
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• CivicActions / ssp-toolkit

  View on GitHub
  Automate the creation of a System Security Plan (SSP)
  ☆48Feb 11, 2026Updated last month
• ComplianceAsCode / oscal

  View on GitHub
  OSCAL SSP content for technologies shipped by Red Hat
  ☆16Mar 2, 2023Updated 3 years ago
• Agh42 / oscal4neo4j

  View on GitHub
  Scripts to import OSCAL example content into the Neo4J graph database
  ☆34Jan 28, 2023Updated 3 years ago
• GovReady / hyperGRC

  View on GitHub
  hyperGRC is a lightweight, in-browser tool for managing compliance-as-code repositories in OpenControl format.
  ☆29Jan 19, 2022Updated 4 years ago
• defenseunicorns-labs / lula1

  View on GitHub
  The Compliance Validator
  ☆184Updated this week
• usnistgov / OSCAL-DEFINE

  View on GitHub
  Develop Enhancements, Future Implementations and New Education
  ☆15Nov 27, 2023Updated 2 years ago
• defenseunicorns / go-oscal

  View on GitHub
  Repository for the generation of OSCAL data types
  ☆28Updated this week
• Cingulara / openrmf-docs

  View on GitHub
  Documentation on the OpenRMF application, including scripts to run the whole stack as well as just infrastructure with documentation on u…
  ☆154Dec 2, 2025Updated 3 months ago
• risk-redux / control_freak

  View on GitHub
  NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations
  ☆41Feb 25, 2026Updated last month
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• GovReady / security-stories-nist800-53

  View on GitHub
  A collection of security related user stories compatible with NIST Special Publication 800-53
  ☆38Mar 14, 2017Updated 9 years ago
• usnistgov / sctools

  View on GitHub
  Tools for security content automation, baseline tailoring, and overlay development.
  ☆45Aug 30, 2024Updated last year
• GoComply / oscalkit

  View on GitHub
  NIST OSCAL SDK and CLI
  ☆22Feb 1, 2026Updated last month
• i-assure / STIG-CCI-CONTROLMAPPER

  View on GitHub
  STIG-CCI-CONTROLMAPPER
  ☆17Jun 21, 2018Updated 7 years ago
• GSA / oscal-js

  View on GitHub
  ☆13Nov 18, 2025Updated 4 months ago
• securecontrolsframework / securecontrolsframework

  View on GitHub
  Config files for my GitHub profile.
  ☆445Dec 29, 2025Updated 2 months ago
• oscal-compass / compliance-to-policy-go

  View on GitHub
  Compliance-to-Policy (C2P) provides the framework to bridge the gap between compliance and policy administration in Go.
  ☆25Mar 19, 2026Updated last week