usnistgov / OSCALLinks
Open Security Controls Assessment Language (OSCAL)
☆825Updated last week
Alternatives and similar repositories for OSCAL
Users that are interested in OSCAL are comparing it to the libraries listed below
Sorting:
- NIST SP 800-53 content and other OSCAL content examples☆401Updated last week
- FedRAMP Automation☆348Updated 8 months ago
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.☆196Updated 6 months ago
- An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.☆222Updated last week
- A repository containing OSCAL serializations of the CIS Critical Security Controls☆57Updated 9 months ago
- Various deployments of the OSCAL editor☆47Updated last year
- Security Documentation Builder☆370Updated 2 years ago
- A library of React components and an example user interface application that provides a direct UI into NIST's Open Security Controls Asse…☆63Updated last year
- A simple open source command line tool to support common operations over OSCAL content.☆57Updated this week
- An open source, self-service GRC tool to automate security assessments and compliance.☆199Updated last year
- An initial OpenAPI definition of an OSCAL REST API.☆40Updated last year
- A case study for ACSAC 2022 utilizing OSCAL with a custom GitHub action to automate assessments.☆23Updated 2 years ago
- A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.☆332Updated 2 weeks ago
- Automate the creation of a System Security Plan (SSP)☆43Updated 2 weeks ago
- Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI☆45Updated 5 years ago
- OWASP Foundation Web Respository☆26Updated this week
- Tools for the OSCAL project☆36Updated 2 years ago
- OCSF Schema☆758Updated last week
- Continuous Audit Metrics☆27Updated last year
- Heimdall Enterprise Server 2 lets you view, store, and compare automated security control scan results.☆241Updated this week
- Documentation on the OpenRMF application, including scripts to run the whole stack as well as just infrastructure with documentation on u…☆149Updated 3 weeks ago
- The Elevation of Privilege Threat Modeling Game☆339Updated last year
- The community area and documents about Code of Conduct.☆18Updated 4 years ago
- 🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept…☆497Updated last year
- The purpose of the Metrics & Metadata (formerly Identifying Security Threats) working group is to enable stakeholders to have informed co…☆223Updated last year
- 🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…☆390Updated last year
- OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…☆202Updated last week
- Built-in Panther detection rules and policies☆432Updated this week
- This repository is a collection of resources to help facilitate compliance innovation utilizing Cloud, DevSecOps and Software Factory tec…☆76Updated 2 years ago
- Minimizing rework for governance activities.☆34Updated this week