nist

There are 6 repositories under nist topic.

• vletoux / pingcastle

  PingCastle - Get Active Directory Security at 80% in 20% of the time

  active-directorycisododhipaamimikatznistping-castlepingcastlereporting-toolsecuritysoxstig
  Language:C# 2113
• cli

  cloudgraphdev / cli

  The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent.

  awsgcpazuregraphqldevopsdeveloper-toolsdevops-toolskubernetessecurity-toolscspmnistisocispcisecuritysecurity-auditcloudtencent
  Language:TypeScript 869

• usnistgov / OSCAL

  Open Security Controls Assessment Language (OSCAL)

  assessmentxmljsonschemanistautomationauthorizationsecuritycomplianceyamloscal
  Language:XSLT 632

• RustCrypto / elliptic-curves

  Collection of pure Rust elliptic curve implementations: NIST P-224, P-256, P-384, P-521, secp256k1, SM2

  ecdsanistrustschnorrtaproot
  Language:Rust 600
• noble-curves

  paulmillr / noble-curves

  Audited & minimal JS implementation of elliptic curve cryptography.

  cryptocryptographyecdsaed25519ed448eddsaelliptic-curve-cryptographyelliptic-curvesjavascriptnistnoblep384p521secp256k1typescriptx448jubjubp256bls12-381bitcoin
  Language:TypeScript 585

• Funkmyster / awesome-cloud-security

  A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.

  cloud-securityawssecurityinformation-securitywafdlploggingcloudelasticsearchawesomeawesome-listaws-securitydata-loss-preventionsecurity-standardsnistgoogle-cloud-securityhacktoberfesthacktoberfest2023oracle-cloud-securityhacktoberfestcebu
  560

• msd0pe-1 / cve-maker

  Tool to find CVEs and Exploits.

  cvecve-searchexploitexploit-dbpocsearchsploitgithub-exploitnistnist-database
  Language:Python 427
• CVE_Prioritizer

  TURROKS / CVE_Prioritizer

  Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time threat information, gain a competitive advantage, and stay informed about the latest trends.

  cisa-kevcvecvssepssnistnvdpatchingvulnerability-management
  Language:Python 406

• bmarsh9 / gapps

  Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking. https://gapps.darkbanner.com

  compliancesecuritysoc2grccmmc27002iso27001nisthipaanist-csfnist800-53asvsowaspowasp-top-10cscpcipci-dsscis18
  Language:HTML 342

• xeol-io / xeol

  A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs

  end-of-lifesecurityeolrelease-policysbomcomplianceoutdated-packagesfedrampnistoutdated-librariespci-dssoutdated-dep
  Language:Go 318
• ciso-assistant-community

  intuitem / ciso-assistant-community

  CISO Assistant is an open-source one-stop-shop for GRC - Risk and Audit Management supporting multiple standards: NIST CSF, ISO 27001, NIS2, SOC2, PCI DSS, CMMC, PSPF, GDPR, HIPAA, Essential Eight, DFS-500, DORA, NIST AI RMF, CyFun, AirCyber and more

  cmmccompliancegrcrisksoc2pci-dssopen-sourcegdprdoracsfhipaacybersecuritynistowaspauditprivacyaianssiiso27001
  Language:Python 302

• stevespringett / nist-data-mirror

  A simple Java command-line utility to mirror the CVE JSON data from NIST.

  appsecnvdsoftware-securitynistcpecvejavasoftware-composition-analysissca
  Language:Java 206

• langleyfoxall / laravel-nist-password-rules

  🔒 Laravel validation rules that follow the password related recommendations found in NIST Special Publication 800-63B section 5.

  laravel-validationpasswordssecuritylaravel-packagepassword-strengthnistnist800-63b
  Language:PHP 200

• usnistgov / ACVP

  Industry Working Group on Automated Cryptographic Algorithm Validation

  cryptographyprotocolnistcryptographic-algorithms
  Language:HTML 151

• usnistgov / mobile-threat-catalogue

  NIST/NCCoE Mobile Threat Catalogue

  threatcataloguenistmobile
  Language:HTML 141

• MolSSI / QCElemental

  Periodic table, physical constants, and molecule parsing for quantum chemistry.

  chemistrycodatacomputational-chemistrynistperiodic-tablephysical-constantpythonquantum-chemistrystandards
  Language:Python 131
• NIST-to-Tech

  mikeprivette / NIST-to-Tech

  An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)

  nist-cybersecurity-frameworkcybersecuritynistnist-csfblueteamredteampurpleteamcyber-securitycyber-security-teamnist800-53pentestingpentesting-toolspentestinfosecinfosec-approvedinfosec-referencenetsecnetsec-toolsnetsecurityvulnerability
  100

• mhshams / jnbis

  NIST Biometric Image Software (Java Implementation)

  javanistnist-biometric-imagewsq
  Language:Java 99

• arcetri / sts

  Improved version of the NIST Statistical Test Suite (STS)

  stsnistfftwstatistical-testsprngrandom-number-generatorscryptographyscientific-computing
  Language:C 80
• nvdlib

  vehemont / nvdlib

  A simple wrapper for the National Vulnerability CVE/CPE API

  pythoncvelibrarynvdnistvulnerabilitypython3nvdlibwrapperapi
  Language:Python 75

• Mirantis / compliance

  Docker Enterprise Edition Security Controls for Compliance

  opencontrolfedrampdockersspnistdocker-ee
  Language:Go 66

• makinako / OpenFIPS201

  An open source reference card application for NIST FIPS 201-2 / NIST SP800-73-4, targeting Javacard 3.0.4+

  smartcardpivnistnist800-73fips201-2authenticationjavacardcard-applicationeccrsaellipticaesdestripledes
  Language:Java 63
• hkdf

  patrickfav / hkdf

  A standalone Java 7 implementation of HMAC-based key derivation function (HKDF) defined in RFC 5869 first described by Hugo Krawczyk. HKDF follows the "extract-then-expand" paradigm which is compatible to NIST 800-56C Rev. 1 two step KDF

  hkdfkdfhmachmac-sha256rfc5869hashcryptographyhmac-sha512java7android-compatibilityhmac-sha1key-derivation-functionnist800-56ctwo-step-key-derivationjavajdk7
  Language:Java 63

• stevespringett / CPE-Parser

  A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIST

  nistmitrecpenvdjavalibrary
  Language:Java 44

• frereit / TensorflowHandwritingRecognition

  Using Tensorflow to classify the NIST Dataset 19 (Handwriting)

  tensorflowhandwriting-recognitionhandwriting-ocrhandwritten-text-recognitionpythonnistneural-networkconvolutional-neural-networksneural-networksconvolutional-layersconvolutional-neural-networkconvolutional-networkspython-3python-tensorflow
  Language:Python 40

• ProcessusT / vulnspy

  VULNSPY regularly retrieves the latest alerts published by the CERT-FR and the related vulnerabilities with their CVSS score and allows you to notify by email or by discord if a defined threshold is exceeded

  cert-frdiscordnistnotificationpython3vulnerabilities
  Language:Python 35
• tlsassistant

  stfbk / tlsassistant

  An open-source modular framework capable of identifying a wide range of TLS vulnerabilities and assessing compliance with multiple guidelines. Its actionable report can assist the user in correctly and easily fixing their configurations.

  tlsmitigations3shakebar-mitzvahbreachcrimedrownhttpshstslucky13certificate-transparencypoodlerc4robotslothsweet32attack-treescompliancemitigationnist
  Language:Python 35

• stevespringett / cvss-calculator

  A Java library for calculating CVSSv2, CVSSv3, and CVSSv4 scores and vectors

  javanvdnistcvsscvssv2cvssv3librarycvssv4
  Language:Java 33

• usnistgov / ACVP-Server

  A repository tracking releases of NIST's ACVP server. See www.github.com/usnistgov/ACVP for the protocol.

  nistprotocolacvpacvp-servercryptographynist-approved-algorithmscryptographic-algorithm-validations
  Language:C# 33

• m3n0sd0n4ld / uCVE

  uCVE is a tool written in GO that allows to extract CVE's related to a specific software and version, obtaining a report in HTML format with the result and/or exporting it to the pentesting report.

  cvegogolanghacking-toolmitrenistreportreportingvulnerabilities
  Language:Go 32

• jedisct1 / rust-xoodyak

  Xoodyak, a lightweight and versatile cryptographic scheme implemented in Rust.

  xoodooxoodyakcyclistnistlightweightcryptocryptography
  Language:Rust 28

• pandatix / nvdapi

  Unofficial but convenient Go wrapper around the NVD REST JSON API

  nvdapigocvecpenist
  Language:Go 28

• usnistgov / oscal-deep-diff

  Open Security Controls Assessment Language (OSCAL) Deep Differencing Tool

  diffcompliancejsonnistsecurityyamloscal
  Language:TypeScript 28

• homerflander / AES-Encryption-Python

  Two scripts in Python to encrypt/decrypt using the 128 bits AES algorithm, ECB mode with hex "00" as padding for each character. For the encryption, an ascii plaintext file is taken as the input, then an encrypted hex file is outputted. For the decryption, a ciphertext hex file is taken as the input, then a decrypted ascii file is outputted.

  pythonpython-3-6aesaes-encryptionaes-128bitvectornistencryptiontextfileecbhexpaddingciphertextaes-decryptionplaintextaes-encryption-pythonecb-mode
  Language:Python 25

• Peco602 / awesome-space-security

  A curated list of awesome resources about the security of space systems.

  awesomeccsdsecssnistsecurityspacenasasparta
  Language:Python 25

• plasticuproject / nvd_api

  An unofficial, RESTful API for NIST's NVD

  nistnvdnist-databasecvecve-searchpythonflaskrest-apiapirestfulflask-restfulcvesnist-nvdnvd-apikeyword-searchkeywordrestful-apirestinfoseccyber-security
  Language:Python 22