The MITRE Corporation ORG

Heimdall Enterprise Server 2 lets you view, store, and compare automated security control scan results.

A web application to streamline the development of STIGs from SRGs

eMASSer is a command-line interface (CLI) that aims to automate routine business use-cases and provide utility surrounding the Enterprise Mission Assurance Support Service (eMASS) by leveraging its representational state transfer (REST) application programming interface (API).

The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools developed by MITRE and the security community to streamline security automation for systems and DevOps pipelines

Cyber Threat Intelligence Repository expressed in STIX 2.0

Smiley's HTTP Proxy implemented as a Java servlet

Adversarial Threat Landscape for AI Systems

Modular file scanning/analysis framework

CASCADE Server

MITRE Caldera™ for OT Plugins & Capabilities

Data from a BRAWL Automated Adversary Emulation Exercise

Automatically assess and score software repositories for supply chain risk.

A command-line and ruby API of utilities, converters and tools for creating, converting and processing security baseline formats, results and data

A CALDERA plugin

InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark

A CALDERA plugin

Search relevance evaluation toolkit

MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.

Online and batch-based concept and data drift detection algorithms to monitor and maintain ML performance.

pydecipher: unfreeze and deobfuscate your frozen python code

Web app that provides basic navigation and annotation of ATT&CK matrices

CARET - A tool for viewing cyber analytic relationships

A MITRE Caldera plugin

No description.

A Security Results Viewer for the web with storage, teams and history

No description.

DEPRECATED: A set of utilities for converting and working with compliance data for viewing in the heimdall applications

Caldera plugin to deploy "humans" to emulate user behavior on systems

An AI-powered plugin for Caldera that orchestrates long-running LLM workflows to automatically create adversary emulation abilities and plan operations. Optionally enriches workflows with Retrieval-Augmented Generation (RAG) using Cyber Threat Intelligence (CTI) from STIX JSON files.

This CALDERA Plugin converts Adversary Emulation Plans from the Center for Threat Informed Defense

(WIP) An ansible playbook to harden a docker host to the CIS CE Benchmark requirements

A sparklyr extension for nested data

Landing Page Content/Builder for MITRE Security Automation Framework

A CALDERA plugin

A CALDERA plugin for autonomous incident response

A CALDERA plugin

The eMASS client repository maintains the Enterprise Mission Assurance Support Service (eMASS) Representational State Transfer (REST) Application Programming Interface (API) specification and executables.

Open Source software from The MITRE Corporation

ROS Global Path Planner Plugin based on the F-RRT* algorithm from this paper: https://doi.org/10.1016/j.eswa.2021.115457

Experimental CPSA -- the Cryptographic Protocol Shapes Analyzer experimental version

STIG Ready Content: InSpec Profile for NGINX Open Source based off the Web SRG V2R3

A dashboard framework for visualizing complex data sets on T1V multi-panel displays

A CALDERA Plugin Template

Heimdall Lite 2.0 is a JavaScript based security results viewer and review tool supporting multiple security results formats, such as: InSpec, SonarQube, OWASP-Zap and Fortify which you can load locally, from S3 and other data sources.

Publicly accessible version of the FiGHT website.

Assembly-based binary pattern search!

An iris quality plugin for the BIQT framework.

This repository contains several courses to learn about using and developing SAF capabilities

CLI tool for fetching, managing, and exporting CIS benchmarks from CIS WorkBench

Powerful XML<->JSON JavaScript mapping library.

Exploration of the U.S. rulesets as a network

An aircraft dynamics and control model for closed-loop RTCA requirements testing.

No description.

The SAF Training Lab is a GitHub Codespaces environment that makes it quick and easy for you to use, learn and participate in the MITRE Security Automation Framework Training Classes.

The Mental Wellness Index is a framework and dashboard tool that provides a picture of community-level mental wellness for each zip code in the nation

A micro InSpec baseline to check for insecure or public s3 buckets in your VPC

InSpec profile for Microsoft Windows 10, against DISA's Microsoft Windows 10 Security Technical Implementation Guide (STIG) Version 1, Release 19

ALUE (Aerospace Language Understanding Evaluation) is a comprehensive framework designed to facilitate the evaluation and inference of Language Learning Models (LLMs) on aviation- and aerospace-specific datasets.

No description.

InSpec profile to validate an M365 account to the standards of the CIS Microsoft 365 Foundations Benchmark.

Microsoft Windows Server 2019 STIG InSpec Profile

Easily scan with multiple yara rules from different sources.

A simplified simulation of a water treatment plant with Modbus and BACnet process control. Designed to serve as a target for MITRE Caldera for OT.

Plugin that serves the ATT&CK website alongside CALDERA.

An InSpec Profile for evaluating a Windows 2016 server to the DISA STIGs

InSpec profile to validate the secure configuration of Canonical Ubuntu 16.04 LTS against DISA's Canonical Ubuntu 16.04 LTS Security Technical Implementation Guide (STIG) Version 1 Release 1.

Standalone tool for converting DISA Checklists to eMASS POA&M Excel spreadsheets.

A high-speed lidar based mapping package for use with large scale robotics such as autonomous vehicles.

A dam control simulation for MITRE Caldera for OT

RHEL 9.X STIG Automated Compliance Validation Profile works with Chef InSpec to perform automated compliance checks of RHEL9.

Case studies of real secure coding issues to provide educators, project leaders, software development teams, and assessment teams insight into these critical issues and show how to avoid them.

The core engine of the BIQT framework.

A pipeline for generating inconspicuous naturalistic adversarial patches (INAPs) against object detectors with one input image

COSA (Compliance Orchestration Situational Awareness) is a multi-part system which allows teams to integrate compliance into a CI/CD pipeline, shift security left (in the DevSecOps process), and track/report progress towards compliance goals. It orchestrates a series of tests, each of which may be automated, manual, or inherited. As a result, it promotes incremental achievement rather than assuming that 100% automation is possible. Multiple control catalogs are supported. Note that COSA is not a scanner - instead, it uses existing scanners to perform that function, recording the results as attachments.

A proof-of-concept Inspec input plugin that will use an OSCAL component and its schema to configure profile input variables.

No description.

Ingest baselines and parse out which NIST 800-53 controls they validate

A CALDERA plugin

Provides SAML authentication for CALDERA by establishing CALDERA as a SAML Service Provider (SP)

Tools for the CVSS rubric for medical devices

Project dedicated to extending the capabilities of automated accessibility testing tools to include testing interactive web content.

Ansible role for YAML editing

MITRE Election Guard Verifier

InSpec profile for Crunchy Data PostgreSQL Security Technical Implementation Guide :: Version 3, Release: 1 Benchmark Date: 24 Jul 2024

InSpec profile to validate the secure configuration of Ubuntu 20.04, against DISA's Canonical Ubuntu 20.04 LTS Security Technical Implementation Guide (STIG) Version 1, Release 6.

LM + MITRE SAF project

Grid Watch: A Virtual DNP3 Electrical Grid Sandbox

Debrief is a CALDERA plugin for gathering overall campaign information and analytics for a set of operations.

Caldera Documentation Plugin

GitHub Action for SAF CLI

CIS Docker Community Edition Benchmark InSpec Profile

Automatically update InSpec profiles using the latest version of DISA STIGs and CIS Benchmarks.

MITRE Caldera's user interface plugin powered by VueJS

Inspec validation profile for CIS Microsoft Azure Foundations Benchmark v3.0.0 - 09-05-2024

InSpec testing for baseline compliance with the Oracle 19c CIS Benchmark

Automated Test Decision Framework

This InSpec compliance profile implement the ElasticSearch Security Technical Implementation Guide (STIG) - (Draft) in an automated way to provide security best-practice tests around ElasticSearch with X-pack server and system settings in a production environment.

MITRE's C/C++ implementation of WGS84 geodesic algorithms documented in FAA Order 8260.58A, Appendix E.

A CALDERA plugin

A CALDERA plugin allowing SSL and proxy capabilities

(WIP) (ALPHA) Compliance Mapper is a web-based rest-api and application for information assurance control mapping

MIGRATED: A Typescript Library for working with InSpec data

No description.

STIG Ready Content: Ansible hardening for Keycloak configuration

MITRE LILAC(TM) toolkit for detecting and mitigating problematic chatbot responses

RFC 7030 external issuer controller for cert-manager.

InSpec: Auditing and Testing Framework

Inspec Profile to validate MS IIS 8.5 to the DISA STIG

This analytic pipeline was developed as part of the Real World Evidence to Accelerate COVID-19 Therapeutics project to conduct a real-world observational study of the safety and effectiveness of Monoclonal Antibodies (mAbs) to fight SARS-CoV-2.

Inspec validation profile for Microsoft Windows 11 Security Technical Implementation Guide :: Version 2, Release 2 :: Benchmark Date: 15 Nov 2024

RHEL 8.X STIG Automated Compliance Validation Profile works with Chef InSpec to perform automated compliance checks of RHEL8.

Chef InSpec to perform automated compliance checks of AL2023

Typescript objects for InSpec profiles

(WIP) An AWS Lambda Function to run the SAF CLI as a function in your AWS VPC

A BACnet simulator for use with Caldera for OT

Caldera plugin to dynamically compile code segments from abilities

Iris Analysis Toolkit

A helm chart for MITRE SAF's Heimdall 2.

Postgres Database API for Heimdall written in Typescript

Heimdall Server backend Typescript implementation

An event listener for Keycloak for email notification

An app to compare redlining methods across all redlined cities.

Caldera for OT Plugin

Ansible role for securing nginx configurations

InSpec profile for Apache Tomcat 9.x STIG

Python library implementing the methods described in "Deep-Learned Observation Operators for Artificial Intelligence Weather Forecasting Models."

Authoritative mappings from CIS Controls to DISA CCI and NIST SP 800-53 Rev 5 for compliance automation

No description.

Automated workflow for hardening a MongoDB container against the MongoDB Enterprise Advanced 4.x Security Technical Implementation Guide :: Version 1, Release: 2 Benchmark Date: 27 Oct 2022

Endpoint Security Minimum Data Standards Technical Guide

Caldera for OT Plugin

API for creating Chef InSpec profiles

The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

THIS CONTENT HAS BEEN MIGRATED TO https://github.com/mitre/saf-training. The MITRE InSpec Team's introduction to InSpec Profile Development

RHEL 8.X STIG Automated Compliance Validation Profile works with Chef InSpec to perform automated compliance checks of RHEL8.

Sample code for a Packer template for building a STIG-hardened container

MITRE's Interval Management Sample Algorithm. An implementation of RTCA DO-361A Appendix C.

DevSecOps Capability Model (DCaM)

Provides functions for interacting with an ESXi server, manipulating VMs/OVFs, and managing remote connections such as SSH and WinRM.

InSpec Profile to validate MS SQL Database 2022

Vue component to view the inspec baseline profiles

No description.

Visual programming language tool designed for managing configurations and deployments

open source interpretability platform 🧠

THIS CONTENT HAS BEEN MIGRATED TO https://github.com/mitre/saf-training.

A simple and straightforward settings solution that uses an ERB enabled YAML file and a singleton design pattern.

InSpec profile to validate the secure configuration of Keycloak

Caldera for OT Plugin

No description.

No description.

No description.

Heimdall Data Format (HDF) is a standardized JSON schema for representing security assessment baselines and results across diverse tools and platforms.

A plugin for the GraphEx application to create nodes for the pip package esxi-utils. This enables direct control over ESXi environments and remote connection features such as SSH and WinRM.

Crunchy Data Postgres 16 Security Technical Implementation Guide :: Version 1, Release: 1 Benchmark Date: 13 Jun 2024

Transport for Kubernetes containers for use with Chef InSpec

Centralized packaging repo for MITRE SAF tools — RPMs, DEBs, APKs for Heimdall, Vulcan, SAF CLI, and 101 InSpec profiles

MITRE Adaptive Capabilities Testing (ACT)

Vuejs accordian component to view the profile controls

No description.

Converter utils for Inspec that can be included as a node module or used from the command line

(WIP) InSpec profile to validate the secure configuration of Ubuntu 22.04, against DISA's Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide (STIG) Version 1, Release 1

No description.

(WIP) InSpec profile to validate the secure configuration of Ubuntu 22.04, against DISA's Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide (STIG) Version 1, Release 1

Adversarial Actions in Digital Asset Payment Technologies

Automated STIG Benchmark Compliance Remediation for RHEL 9 with Ansible

Ansible role for MongoDB Enterprise Advanced 4.x Security Technical Implementation Guide :: Version 1, Release: 2 Benchmark Date: 27 Oct 2022

No description.

An Inspec resoruce pack for F5 BigIP

No description.

No description.

Work in Progress

Containerized InSpec runner

No description.

Latest data pulled from various benchmark sources

Preview of continuous build changes to the upstream NIH/ODSS FHIR for Research website repository (https://nih-odss.github.io/fhir-for-research/). The preview build is located at https://mitre.github.io/fhir-for-research/.

Repo to capture Policies and documents for the MITRE TL-Root and MITRE CNA-LR

No description.

A C++ library for loading structured, human-readable data from the file system.

Inspec validation profile for CIS Oracle Cloud Infrastructure Foundations Benchmark v3.0.0 Release 1

C++ header-only library for Scientific Units of Measure. This is a fork of an abandoned, well-loved repo.

A security extension for devise, meeting industry-standard security demands for web applications.

(WIP) RHEL 10.X STIG Automated Compliance Validation Profile works with Chef InSpec to perform automated compliance checks of RHEL10.

No description.

Amazon Linux 2023 STIG InSpec baseline (WIP)

IR camera model for determining reliable detection range of whales

GitHub Action to automate releases on to Iron Bank

[WIP] FIPS-mode RHEL 9 vSphere template reference — LUKS2 + SELinux + fapolicyd with Packer/Ansible/InSpec. Under active development.

Website for the Linkage Governance Framework project.

VitePress prototype for MITRE SAF documentation site

Oracle Linux 8 (OL8) STIG Automated Compliance Validation Profile works with Chef InSpec to perform automated compliance checks of OL8.

No description.

An API and client for managing STIG assessments

⏩ Ship faster with Continuous AI. Open-source CLI that can be used in TUI mode as a coding agent or Headless mode to run background agents

FHIR for Research

Vue 3 PDF viewer based on Mozilla's PDFJS

Minimal Alpine-based Docker image with CINC Auditor, train-k8s-container plugin, and kubectl for Kubernetes compliance scanning

Repository file standardization and compliance tool for MITRE open-source projects

Smart typography transformations for Nuxt - automatic superscript, subscript, and symbol formatting

A structural framework for organizing and managing Model Context Protocol (MCP) configurations

Statistics to monitor the health of the Chef ecosystem