NSA Cybersecurity Directorate's repositories
Windows-Secure-Host-Baseline
Configuration guidance for implementing the Windows 10 and Windows Server 2016 DoD Secure Host Baseline settings. #nsacyber
Mitigating-Web-Shells
Guidance for mitigation web shells. #nsacyber
GRASSMARLIN
Provides situational awareness of Industrial Control Systems (ICS) and Supervisory Control and Data Acquisition (SCADA) networks in support of network security assessments. #nsacyber
Event-Forwarding-Guidance
Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsacyber
Hardware-and-Firmware-Security-Guidance
Guidance for the Spectre, Meltdown, Speculative Store Bypass, Rogue System Register Read, Lazy FP State Restore, Bounds Check Bypass Store, TLBleed, and L1TF/Foreshadow vulnerabilities as well as general hardware and firmware security guidance. #nsacyber
Windows-Event-Log-Messages
Retrieves the definitions of Windows Event Log messages embedded in Windows binaries and provides them in discoverable formats. #nsacyber
Mitigating-Obsolete-TLS
Guidance for mitigating obsolete Transport Layer Security configurations. #nsacyber
nsacyber.github.io
NSA Cybersecurity. Formerly known as NSA Information Assurance and the Information Assurance Directorate
AppLocker-Guidance
Configuration guidance for implementing application whitelisting with AppLocker. #nsacyber
simon-speck
The SIMON and SPECK families of lightweight block ciphers. #nsacyber
WALKOFF-Apps
WALKOFF-enabled applications. #nsacyber
RandPassGenerator
A command-line utility for generating random passwords, passphrases, and raw keys. #nsacyber
BitLocker-Guidance
Configuration guidance for implementing BitLocker. #nsacyber
HTTP-Connectivity-Tester
Aids in discovering HTTP and HTTPS connectivity issues. #nsacyber
serial2pcap
Converts serial IP data, typically collected from Industrial Control System devices, to the more commonly used Packet Capture (PCAP) format. #nsacyber
Blocking-Outdated-Web-Technologies
Guidance for blocking outdated web technologies. #nsacyber
Detect-CVE-2017-15361-TPM
Detects Windows and Linux systems with enabled Trusted Platform Modules (TPM) vulnerable to CVE-2017-15361. #nsacyber
Driver-Collider
Blocks drivers from loading by using a name collision technique. #nsacyber
simon-speck-supercop
Fast implementations of the SIMON and SPECK lightweight block ciphers for the SUPERCOP benchmark toolkit. #nsacyber
Cyber-Challenge
Supporting files for cyber challenge exercises. #nsacyber
Chinese-State-Sponsored-Cyber-Operations-Observed-TTPs
Supporting files for the Chinese State-Sponsored Cyber Operations: Observed TTPs Cybersecurity Advisory. #nsacyber