Alternatives and similar repositories for OSCAL

Users that are interested in OSCAL are comparing it to the libraries listed below

• usnistgov / oscal-content
  NIST SP 800-53 content and other OSCAL content examples
  ☆405Updated 3 weeks ago
• GSA / fedramp-automation
  FedRAMP Automation
  ☆351Updated 9 months ago
• oscal-club / awesome-oscal
  A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.
  ☆199Updated 6 months ago
• CISecurity / CISControls_OSCAL
  A repository containing OSCAL serializations of the CIS Critical Security Controls
  ☆58Updated 9 months ago
• opencontrol / compliance-masonry
  Security Documentation Builder
  ☆372Updated 2 years ago
• EasyDynamics / oscal-editor-deployment
  Various deployments of the OSCAL editor
  ☆47Updated last year
• EasyDynamics / oscal-react-library
  A library of React components and an example user interface application that provides a direct UI into NIST's Open Security Controls Asse…
  ☆63Updated last year
• oscal-compass / compliance-trestle
  An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.
  ☆223Updated this week
• GovReady / govready-q
  An open source, self-service GRC tool to automate security assessments and compliance.
  ☆202Updated last year
• usnistgov / oscal-cli
  A simple open source command line tool to support common operations over OSCAL content.
  ☆58Updated 3 weeks ago
• EasyDynamics / oscal-rest
  An initial OpenAPI definition of an OSCAL REST API.
  ☆40Updated last year
• usnistgov / blossom-case-study
  A case study for ACSAC 2022 utilizing OSCAL with a custom GitHub action to automate assessments.
  ☆23Updated 2 years ago
• CloudSecurityAlliance / continuous-audit-metrics
  Continuous Audit Metrics
  ☆27Updated last year
• ocsf / ocsf-schema
  OCSF Schema
  ☆766Updated this week
• JupiterOne / security-policy-templates
  A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.
  ☆334Updated last month
• CivicActions / ssp-toolkit
  Automate the creation of a System Security Plan (SSP)
  ☆45Updated last week
• brian-ruf / OSCAL-GUI
  Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI
  ☆45Updated 5 years ago
• chughes757 / Federal-DoD-Software-Factory-Compliance
  This repository is a collection of resources to help facilitate compliance innovation utilizing Cloud, DevSecOps and Software Factory tec…
  ☆76Updated 2 years ago
• usnistgov / oscal-tools
  Tools for the OSCAL project
  ☆36Updated 2 years ago
• OWASP / www-project-threat-and-safeguard-matrix
  OWASP Foundation Web Respository
  ☆26Updated 3 weeks ago
• panther-labs / panther-analysis
  Built-in Panther detection rules and policies
  ☆433Updated this week
• center-for-threat-informed-defense / security-stack-mappings
  🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…
  ☆389Updated last year
• vz-risk / veris
  Vocabulary for Event Recording and Incident Sharing (VERIS)
  ☆625Updated last week
• ossf / gemara
  Minimizing rework for governance activities.
  ☆36Updated this week
• center-for-threat-informed-defense / attack-control-framework-mappings
  🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept…
  ☆497Updated last year
• securecontrolsframework / securecontrolsframework
  Config files for my GitHub profile.
  ☆423Updated 2 weeks ago
• oscal-club / community
  The community area and documents about Code of Conduct.
  ☆18Updated 4 years ago
• risk-redux / control_freak
  NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations
  ☆40Updated 2 months ago
• adamshostack / eop
  The Elevation of Privilege Threat Modeling Game
  ☆337Updated last year
• brianwifaneye / NIST-CSF
  NIST CyberSecurity Framework management tool
  ☆166Updated 4 years ago