nist

There are 8 repositories under nist topic.

ciso-assistant-community
intuitem / ciso-assistant-community
CISO Assistant is a one-stop-shop for GRC, covering Risk, AppSec, Compliance/Audit Management, Privacy and supporting +80 frameworks worldwide with auto-mapping: NIST CSF, ISO 27001, SOC2, CIS, PCI DSS, NIS2, CMMC, PSPF, GDPR, HIPAA, Essential Eight, NYDFS-500, DORA, NIST AI RMF, 800-53, CyFun, AirCyber, NCSC, ECC, SCF and so much mor
audit bsi cis compliance cybersecurity dora ebios-rm fedramp gdpr grc hipaa isms iso27001 nis2 nist owasp privacy risk-management security soc2
Language:Python 2845
netwrix / pingcastle
PingCastle - Get Active Directory Security at 80% in 20% of the time
active-directory ciso dod hipaa mimikatz nist ping-castle pingcastle reporting-tool security sox stig
Language:C# 2481
cli
cloudgraphdev / cli
The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent.
aws azure cis cloud cspm developer-tools devops devops-tools gcp graphql iso kubernetes nist pci security security-audit security-tools tencent
Language:TypeScript 889
RustCrypto / elliptic-curves
Collection of pure Rust elliptic curve implementations: NIST P-224, P-256, P-384, P-521, secp256k1, SM2
ecdsa nist rust schnorr taproot
Language:Rust 731
usnistgov / OSCAL
Open Security Controls Assessment Language (OSCAL)
assessment authorization automation compliance json nist oscal schema security xml yaml
Language:XSLT 730
CVE_Prioritizer
TURROKS / CVE_Prioritizer
Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time threat information, gain a competitive advantage, and stay informed about the latest trends.
cisa-kev cve cvss epss nist nvd patching vulnerability-management
Language:Python 669
Funkmyster / awesome-cloud-security
A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.
cloud-security aws security information-security waf dlp logging cloud elasticsearch awesome awesome-list aws-security data-loss-prevention security-standards nist google-cloud-security hacktoberfest hacktoberfest2023 oracle-cloud-security hacktoberfestcebu
600
bmarsh9 / gapps
Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking. https://gapps.darkbanner.com
compliance security soc2 grc cmmc 27002 iso27001 nist hipaa nist-csf nist800-53 asvs owasp owasp-top-10 csc pci pci-dss cis18
Language:HTML 526
msd0pe-1 / cve-maker
Tool to find CVEs and Exploits.
cve cve-search exploit exploit-db github-exploit nist nist-database poc searchsploit
Language:Python 475
xeol-io / xeol
A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs
compliance end-of-life eol fedramp nist outdated-dep outdated-libraries outdated-packages pci-dss release-policy sbom security
Language:Go 387
langleyfoxall / laravel-nist-password-rules
🔒 Laravel validation rules that follow the password related recommendations found in NIST Special Publication 800-63B section 5.
laravel-package laravel-validation nist nist800-63b password-strength passwords security
Language:PHP 211
stevespringett / nist-data-mirror
A simple Java command-line utility to mirror the CVE JSON data from NIST.
appsec nvd software-security nist cpe cve java software-composition-analysis sca
Language:Java 208
usnistgov / ACVP
Industry Working Group on Automated Cryptographic Algorithm Validation
cryptography protocol nist cryptographic-algorithms
Language:HTML 182
MolSSI / QCElemental
Periodic table, physical constants, and molecule parsing for quantum chemistry.
chemistry codata computational-chemistry nist periodic-table physical-constant python quantum-chemistry standards
Language:Python 159
usnistgov / mobile-threat-catalogue
NIST/NCCoE Mobile Threat Catalogue
threat catalogue nist mobile
Language:HTML 147
NIST-to-Tech
mikeprivette / NIST-to-Tech
An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)
nist-cybersecurity-framework cybersecurity nist nist-csf blueteam redteam purpleteam cyber-security cyber-security-team nist800-53 pentesting pentesting-tools pentest infosec infosec-approved infosec-reference netsec netsec-tools netsecurity vulnerability
115
mhshams / jnbis
NIST Biometric Image Software (Java Implementation)
java nist nist-biometric-image wsq
Language:Java 106
arcetri / sts
Improved version of the NIST Statistical Test Suite (STS)
sts nist fftw statistical-tests prng random-number-generators cryptography scientific-computing
Language:C 101
Santiago-Labs / telophasecli
Open Source AWS Control Tower
aws compliance fedramp soc2 hitrust nist nist800-53 pci
Language:Go 95
nvdlib
vehemont / nvdlib
A simple wrapper for the National Vulnerability CVE/CPE API
api cve library nist nvd nvdlib python python3 vulnerability wrapper
Language:Python 94
Kwangsa19 / Ketmanto-Cybersecurity-Portfolio
I developed a rigorous cybersecurity project portfolio on mock clients covering NIST, audits, Linux, SQL, assets, threats, vulnerabilities, detection, incident response, escalation, Wireshark, tcpdump, IDS (Suricata), SIEM (Splunk, Chronicle), and Python automation.
cybersecurity incident-response linux python security security-audit security-automation sql threat-modeling chronicle splunk suricata tcpdump wireshark escalation nist playbook siem pasta ids
Language:Jupyter Notebook 90
usnistgov / policy-machine-core
Core components of the Policy Machine, a NGAC reference implementation.
abac access-control ngac nist
Language:Java 78
makinako / OpenFIPS201
An open source reference card application for NIST FIPS 201-2 / NIST SP800-73-4, targeting Javacard 3.0.4+
smartcard piv nist nist800-73 fips201-2 authentication javacard card-application ecc rsa elliptic aes des tripledes
Language:Java 76
usnistgov / ACVP-Server
A repository tracking releases of NIST's ACVP server. See www.github.com/usnistgov/ACVP for the protocol.
acvp acvp-server cryptographic-algorithm-validations cryptography nist nist-approved-algorithms protocol
Language:C# 72
Peco602 / awesome-space-security
A curated list of awesome resources about the security of space systems.
awesome ccsds ecss nist security space nasa sparta
Language:Python 70
hkdf
patrickfav / hkdf
A standalone Java 7 implementation of HMAC-based key derivation function (HKDF) defined in RFC 5869 first described by Hugo Krawczyk. HKDF follows the "extract-then-expand" paradigm which is compatible to NIST 800-56C Rev. 1 two step KDF
hkdf kdf hmac hmac-sha256 rfc5869 hash cryptography hmac-sha512 java7 android-compatibility hmac-sha1 key-derivation-function nist 800-56c two-step-key-derivation java jdk7
Language:Java 68
Mirantis / compliance
Docker Enterprise Edition Security Controls for Compliance
opencontrol fedramp docker ssp nist docker-ee
Language:Go 66
stevespringett / CPE-Parser
A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIST
cpe java library mitre nist nvd
Language:Java 49
stevespringett / cvss-calculator
A Java library for calculating CVSSv2 and CVSSv3 scores and vectors
java nvd nist cvss cvssv2 cvssv3 library
Language:Java 45
tlsassistant
stfbk / tlsassistant
An open-source modular framework capable of identifying a wide range of TLS vulnerabilities and assessing compliance with multiple guidelines. Its actionable report can assist the user in correctly and easily fixing their configurations.
tls mitigations 3shake bar-mitzvah breach crime drown https hsts lucky13 certificate-transparency poodle rc4 robot sloth sweet32 attack-trees compliance mitigation nist
Language:Python 44
frereit / TensorflowHandwritingRecognition
Using Tensorflow to classify the NIST Dataset 19 (Handwriting)
convolutional-layers convolutional-networks convolutional-neural-network convolutional-neural-networks handwriting-ocr handwriting-recognition handwritten-text-recognition neural-network neural-networks nist python python-3 python-tensorflow tensorflow
Language:Python 40
ProcessusT / vulnspy
VULNSPY regularly retrieves the latest alerts published by the CERT-FR and the related vulnerabilities with their CVSS score and allows you to notify by email or by discord if a defined threshold is exceeded
cert-fr discord nist notification python3 vulnerabilities
Language:Python 38
m3n0sd0n4ld / uCVE
uCVE is a tool written in GO that allows to extract CVE's related to a specific software and version, obtaining a report in HTML format with the result and/or exporting it to the pentesting report.
cve go golang hacking-tool mitre nist report reporting vulnerabilities
Language:Go 35
Stuub / CVE-2024-28995
CVE-2024-28955 Exploitation PoC
cve cve-2024 exploit nist owasp poc solarwinds cve-2024-28995
Language:Python 34
usnistgov / oscal-deep-diff
Open Security Controls Assessment Language (OSCAL) Deep Differencing Tool
diff compliance json nist security yaml oscal
Language:TypeScript 34
pandatix / nvdapi
Unofficial but convenient Go wrapper around the NVD REST JSON API
nvd api go cve cpe nist
Language:Go 33

nist

intuitem / ciso-assistant-community

netwrix / pingcastle

cloudgraphdev / cli

RustCrypto / elliptic-curves

usnistgov / OSCAL

TURROKS / CVE_Prioritizer

Funkmyster / awesome-cloud-security

bmarsh9 / gapps

msd0pe-1 / cve-maker

xeol-io / xeol

langleyfoxall / laravel-nist-password-rules

stevespringett / nist-data-mirror

usnistgov / ACVP

MolSSI / QCElemental

usnistgov / mobile-threat-catalogue

mikeprivette / NIST-to-Tech

mhshams / jnbis

arcetri / sts

Santiago-Labs / telophasecli

vehemont / nvdlib

Kwangsa19 / Ketmanto-Cybersecurity-Portfolio

usnistgov / policy-machine-core

makinako / OpenFIPS201

usnistgov / ACVP-Server

Peco602 / awesome-space-security

patrickfav / hkdf

Mirantis / compliance

stevespringett / CPE-Parser

stevespringett / cvss-calculator

stfbk / tlsassistant

frereit / TensorflowHandwritingRecognition

ProcessusT / vulnspy

m3n0sd0n4ld / uCVE

Stuub / CVE-2024-28995

usnistgov / oscal-deep-diff

pandatix / nvdapi