CIS Benchmark Converter is a Python script that extracts recommendations from CIS Benchmark PDF documents and exports them into CSV, Excel, or JSON formats. The script converts unstructured PDF con…

Azure Governance Visualizer aka AzGovViz is a PowerShell script that captures Azure Governance related information such as Azure Policy, RBAC (a lot more) by polling Azure ARM, Storage and Microsof…

Security automation content in SCAP, Bash, Ansible, and other formats

NIST Certified SCAP 1.2 toolkit

An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.

OpenSSF Scorecard - Security health metrics for Open Source

Open Security Controls Assessment Language (OSCAL)

NIST SP 800-53 content and other OSCAL content examples

A mirror of ISM OSCAL documents. The authoritative source can be found at https://www.cyber.gov.au/ism/oscal.

Azure administrative tiering based on known attack paths