Alternatives and similar repositories for OSCAL

Users that are interested in OSCAL are comparing it to the libraries listed below

• usnistgov / oscal-content
  NIST SP 800-53 content and other OSCAL content examples
  ☆375Updated last week
• GSA / fedramp-automation
  FedRAMP Automation
  ☆343Updated 5 months ago
• oscal-club / awesome-oscal
  A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.
  ☆175Updated 2 months ago
• oscal-compass / compliance-trestle
  An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.
  ☆204Updated this week
• opencontrol / compliance-masonry
  Security Documentation Builder
  ☆369Updated last year
• CISecurity / CISControls_OSCAL
  A repository containing OSCAL serializations of the CIS Critical Security Controls
  ☆55Updated 5 months ago
• EasyDynamics / oscal-editor-deployment
  Various deployments of the OSCAL editor
  ☆46Updated last year
• EasyDynamics / oscal-react-library
  A library of React components and an example user interface application that provides a direct UI into NIST's Open Security Controls Asse…
  ☆60Updated last year
• GovReady / govready-q
  An open source, self-service GRC tool to automate security assessments and compliance.
  ☆194Updated 9 months ago
• EasyDynamics / oscal-rest
  An initial OpenAPI definition of an OSCAL REST API.
  ☆39Updated 11 months ago
• usnistgov / oscal-cli
  A simple open source command line tool to support common operations over OSCAL content.
  ☆54Updated last month
• usnistgov / blossom-case-study
  A case study for ACSAC 2022 utilizing OSCAL with a custom GitHub action to automate assessments.
  ☆23Updated 2 years ago
• JupiterOne / security-policy-templates
  A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.
  ☆322Updated last year
• brian-ruf / OSCAL-GUI
  Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI
  ☆44Updated 5 years ago
• usnistgov / oscal-tools
  Tools for the OSCAL project
  ☆36Updated 2 years ago
• adamshostack / eop
  The Elevation of Privilege Threat Modeling Game
  ☆337Updated last year
• CivicActions / ssp-toolkit
  Automate the creation of a System Security Plan (SSP)
  ☆39Updated 2 months ago
• OWASP / www-project-threat-and-safeguard-matrix
  OWASP Foundation Web Respository
  ☆25Updated last month
• center-for-threat-informed-defense / attack-control-framework-mappings
  🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept…
  ☆494Updated last year
• mitre / heimdall2
  Heimdall Enterprise Server 2 lets you view, store, and compare automated security control scan results.
  ☆235Updated this week
• panther-labs / panther-analysis
  Built-in Panther detection rules and policies
  ☆420Updated this week
• oscal-club / community
  The community area and documents about Code of Conduct.
  ☆18Updated 4 years ago
• CloudSecurityAlliance / continuous-audit-metrics
  Continuous Audit Metrics
  ☆27Updated last year
• ocsf / ocsf-schema
  OCSF Schema
  ☆719Updated last week
• GoComply / fedramp
  Open source tool for processing OSCAL based FedRAMP SSPs
  ☆42Updated 11 months ago
• oasis-tcs / csaf
  OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…
  ☆191Updated last week
• Cingulara / openrmf-docs
  Documentation on the OpenRMF application, including scripts to run the whole stack as well as just infrastructure with documentation on u…
  ☆145Updated 3 weeks ago
• brianwifaneye / NIST-CSF
  NIST CyberSecurity Framework management tool
  ☆166Updated 3 years ago
• cyght-io / oscal-diagrams
  Automatically generated diagrams for OSCAL models
  ☆20Updated 3 years ago
• Threagile / threagile
  Agile Threat Modeling Toolkit
  ☆692Updated last week