The MITRE Corporation

All

473 repositories

crunchy-data-postgresql-stig-baseline
Public
InSpec profile for Crunchy Data PostgreSQL Security Technical Implementation Guide :: Version 1, Release: 1 Benchmark Date: 20 Nov 2020
Ruby
•
Other
•3•6•8•3•Updated Jan 31, 2025Jan 31, 2025
saf
Public
The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools developed by MITRE and the security community to streamline security automation for systems and DevOps pipelines
mitre mitre-corporation mitre-saf security-automation-framework security json compliance security-automation devsecops
TypeScript
•
Other
•38•141•110•16•Updated Jan 31, 2025Jan 31, 2025
inspec-profile-update-action
Public
Automatically update InSpec profiles using the latest version of DISA STIGs and CIS Benchmarks.
HTML
•
Other
•1•8•10•2•Updated Jan 31, 2025Jan 31, 2025
hipcheck
Public
Automatically assess and score software repositories for supply chain risk.
supply-chain-security
Rust
•
Apache License 2.0
•8•93•52•0•Updated Jan 30, 2025Jan 30, 2025
saf_action
Public
GitHub Action for SAF CLI
mitre mitre-corporation mitre-inspec mitre-saf
JavaScript
•
Other
•0•7•5•0•Updated Jan 30, 2025Jan 30, 2025
homebrew-saf
Public
Ruby
•0•1•0•1•Updated Jan 30, 2025Jan 30, 2025
tir-docs
Public
Documentation for the TIR project
JavaScript
•
Other
•0•1•0•3•Updated Jan 30, 2025Jan 30, 2025
azure-foundations-cis-baseline
Public
InSpec profile to validate an Azure cloud environment to the standards of the CIS Azure Foundations Benchmark
Ruby
•
Other
•0•0•0•0•Updated Jan 30, 2025Jan 30, 2025
canonical-ubuntu-22.04-lts-stig-baseline
Public
(WIP) InSpec profile to validate the secure configuration of Ubuntu 22.04, against DISA's Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide (STIG) Version 1, Release 1
Ruby
•
Other
•0•0•1•1•Updated Jan 30, 2025Jan 30, 2025
heimdall2
Public
Heimdall Enterprise Server 2 lets you view, store, and compare automated security control scan results.
mitre-saf
TypeScript
•
Other
•60•211•267•56•Updated Jan 30, 2025Jan 30, 2025
ts-inspec-objects
Public
Typescript objects for InSpec profiles
TypeScript
•
Other
•1•3•7•7•Updated Jan 30, 2025Jan 30, 2025
saf-site-backend
Public
Strapi backend for the SAF site
JavaScript
•
Other
•3•5•5•13•Updated Jan 29, 2025Jan 29, 2025
redhat-enterprise-linux-9-stig-baseline
Public
RHEL 9.X STIG Automated Compliance Validation Profile works with Chef InSpec to perform automated compliance checks of RHEL9.
validation redhat inspec mitre mitre-saf redhat9
Ruby
•
Other
•3•6•3•1•Updated Jan 29, 2025Jan 29, 2025
saf-training-lab-environment
Public template
The SAF Training Lab is a GitHub Codespaces environment that makes it quick and easy for you to use, learn and participate in the MITRE Security Automation Framework Training Classes.
saf mitre-corporation mitre-saf saf-training mitre-training
Shell
•
Other
•145•11•1•1•Updated Jan 29, 2025Jan 29, 2025
saf-training
Public
This repository contains several courses to learn about using and developing SAF capabilities
JavaScript
•
Other
•4•9•12•2•Updated Jan 29, 2025Jan 29, 2025
caldera
Public
Automated Adversary Emulation Platform
hacking cybersecurity mitre red-team security-automation security-testing mitre-attack adversary-emulation caldera mitre-corporation
Python
•
Apache License 2.0
•1.1k•5.8k•58•8•Updated Jan 27, 2025Jan 27, 2025
pickled-canary
Public
Assembly-based binary pattern search!
Rust
•
Apache License 2.0
•3•14•0•1•Updated Jan 27, 2025Jan 27, 2025
vulcan
Public
A web application to streamline the development of STIGs from SRGs
disa compliance inspec stig srg mitre-corporation mitre-inspec compliance-automation
Ruby
•
Other
•18•69•72•7•Updated Jan 26, 2025Jan 26, 2025
WaterSHEDS
Public
Jupyter Notebook
•
Other
•0•0•0•0•Updated Jan 24, 2025Jan 24, 2025
inspec
Public
InSpec: Auditing and Testing Framework
Ruby
•
Other
•682•4•0•2•Updated Jan 24, 2025Jan 24, 2025
mitre-saf
Public
Landing Page Content/Builder for MITRE Security Automation Framework
Vue
•
Other
•405•28•24•2•Updated Jan 24, 2025Jan 24, 2025
train
Public
Transport Interface to unify communication over SSH, WinRM, and friends.
Ruby
•
Apache License 2.0
•90•1•0•0•Updated Jan 23, 2025Jan 23, 2025
blue-agave
Public
Activity Set Platform
HTML
•
Apache License 2.0
•0•0•0•0•Updated Jan 22, 2025Jan 22, 2025
redhat-enterprise-linux-8-stig-baseline
Public
RHEL 8.X STIG Automated Compliance Validation Profile works with Chef InSpec to perform automated compliance checks of RHEL8.
Ruby
•
Other
•2•1•16•4•Updated Jan 17, 2025Jan 17, 2025
amazon-linux-2023-stig-ready-baseline
Public
Chef InSpec to perform automated compliance checks of AL2023
Ruby
•
Other
•11•4•0•1•Updated Jan 17, 2025Jan 17, 2025
aws-s3-baseline
Public
A micro InSpec baseline to check for insecure or public s3 buckets in your VPC
aws security s3 s3-bucket inspec aws-security microprofile s3-bucket-leak mitre-corporation s3-security
Ruby
•
Other
•5•14•1•2•Updated Jan 17, 2025Jan 17, 2025
emb3d
Public
HTML
•7•23•0•0•Updated Jan 17, 2025Jan 17, 2025
canonical-ubuntu-18.04-lts-stig-baseline
Public
(WIP) canonical-ubuntu-18.04-lts-stig-baseline
Ruby
•
Other
•4•9•8•1•Updated Jan 16, 2025Jan 16, 2025
keycloak-custom-policies
Public
An event listener for Keycloak for email notification
Java
•28•3•0•1•Updated Jan 16, 2025Jan 16, 2025
mongodb-enterprise-advanced-3-stig-baseline
Public
InSpec profile for the MongoDB Enterprise Advanced DISA STIG
profile disa inspec stig inspec-profile mitre-corporation mongodb-enterprise disa-stig
Ruby
•
Other
•4•4•2•2•Updated Jan 15, 2025Jan 15, 2025