Repositories list

• hipcheck

  Public
  Automatically assess and score software repositories for supply chain risk.

  supply-chain-security

  Rust

  •

  Apache License 2.0

  •8•85•51•6•Updated Jan 5, 2025Jan 5, 2025

• inspec-profile-update-action

  Public
  Automatically update InSpec profiles using the latest version of DISA STIGs and CIS Benchmarks.

  HTML

  •

  Other

  •1•8•8•2•Updated Jan 5, 2025Jan 5, 2025

• saf

  Public
  The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools developed by MITRE and the security community to streamline security automation for systems and DevOps pipelines

  mitremitre-corporationmitre-saf+ 6security-automation-frameworksecurityjsoncompliancesecurity-automationdevsecops

  TypeScript

  •

  Other

  •38•136•109•17•Updated Jan 4, 2025Jan 4, 2025

• heimdall2

  Public
  Heimdall Enterprise Server 2 lets you view, store, and compare automated security control scan results.

  mitre-saf

  TypeScript

  •

  Other

  •59•210•264•52•Updated Jan 4, 2025Jan 4, 2025

• ts-inspec-objects

  Public
  Typescript objects for InSpec profiles

  TypeScript

  •

  Other

  •1•3•12•12•Updated Jan 4, 2025Jan 4, 2025

• saf_action

  Public
  GitHub Action for SAF CLI

  mitremitre-corporationmitre-inspec+ 1mitre-saf

  JavaScript

  •

  Other

  •0•6•5•1•Updated Jan 4, 2025Jan 4, 2025

• couchbase-enterprise-srg-baseline

  Public
  (WIP) The Couchbase Enterprise InSpec Baseline aligned to the DISA Database SRG

  Ruby

  •

  Other

  •4•2•2•1•Updated Jan 4, 2025Jan 4, 2025

• tir-docs

  Public
  Documentation for the TIR project

  JavaScript

  •

  Other

  •0•1•0•3•Updated Jan 3, 2025Jan 3, 2025

• microsoft-365-foundations-cis-baseline

  Public
  InSpec profile to validate an M365 account to the standards of the CIS Microsoft 365 Foundations Benchmark.

  Ruby

  •

  Other

  •1•1•1•0•Updated Jan 3, 2025Jan 3, 2025

• o365_example_baseline

  Public
  Office 365 example profile to test train-pwsh and inspec-pwsh.

  Ruby

  •

  Other

  •0•0•0•0•Updated Jan 3, 2025Jan 3, 2025

• inspec-pwsh

  Public
  A resource pack for Inspec that should be used with train-pwsh

  Ruby

  •

  Other

  •0•0•1•0•Updated Jan 3, 2025Jan 3, 2025

• solaris-11-x86-stig-baseline

  Public
  inspeclockheed-martinmitre-corporation+ 1mitre-saf

  Ruby

  •

  Other

  •2•2•0•1•Updated Jan 3, 2025Jan 3, 2025

• sample-oracle-mysql-ee-5.7-cis-overlay

  Public
  Overlay for the baseline InSpec profile at https://github.com/mitre/oracle-mysql-ee-5.7-cis-baseline with modifications based on provided requirements.

  Ruby

  •0•1•1•0•Updated Jan 3, 2025Jan 3, 2025

• ubi8-hardening-demo

  Public
  Sample code for a Packer template for building a STIG-hardened container

  Smarty

  •1•2•0•0•Updated Jan 3, 2025Jan 3, 2025

• canonical-ubuntu-20.04-lts-stig-baseline

  Public
  InSpec profile to validate the secure configuration of Ubuntu 20.04, against DISA's Canonical Ubuntu 20.04 LTS Security Technical Implementation Guide (STIG) Version 1, Release 6.

  ubuntustigstig-compliant+ 4mitre-corporationmitre-inspecubuntu2004mitre-saf

  Ruby

  •4•7•18•3•Updated Jan 3, 2025Jan 3, 2025

• cpsa

  Public
  Experimental CPSA -- the Cryptographic Protocol Shapes Analyzer experimental version

  Scilab

  •

  Other

  •2•14•0•0•Updated Jan 2, 2025Jan 2, 2025

• secure-coding-case-studies

  Public
  Case studies of real secure coding issues to provide educators, project leaders, software development teams, and assessment teams insight into these critical issues and show how to avoid them.

  1•1•0•0•Updated Jan 2, 2025Jan 2, 2025

• nginx-stigready-baseline

  Public
  STIG Ready Content: InSpec Profile for NGINX Open Source based off the Web SRG V2R3

  nginxsecuritydisa+ 6inspecstigsrgmitre-corporationstigsmitre-saf

  Ruby

  •

  Other

  •8•21•5•1•Updated Dec 31, 2024Dec 31, 2024

• aws-s3-baseline

  Public
  A micro InSpec baseline to check for insecure or public s3 buckets in your VPC

  awssecuritys3+ 10s3-bucketinspecaws-securitymicroprofiles3-bucket-leakmitre-corporations3-security+ 3

  Ruby

  •

  Other

  •5•14•1•1•Updated Dec 31, 2024Dec 31, 2024

• aws-foundations-cis-baseline

  Public
  InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark

  awssecuritycis+ 8cloudinspeciaaws-securityinspec-profilemitre-corporationmitre-inspec+ 1

  Ruby

  •

  Other

  •30•78•17•1•Updated Dec 31, 2024Dec 31, 2024

• saf-training-lab-environment

  Public template
  The SAF Training Lab is a GitHub Codespaces environment that makes it quick and easy for you to use, learn and participate in the MITRE Security Automation Framework Training Classes.

  safmitre-corporationmitre-saf+ 2saf-trainingmitre-training

  Shell

  •

  Other

  •145•10•1•1•Updated Dec 31, 2024Dec 31, 2024

• redhat-enterprise-linux-8-stig-baseline

  Public
  RHEL 8.X STIG Automated Compliance Validation Profile works with Chef InSpec to perform automated compliance checks of RHEL8.

  Ruby

  •

  Other

  •2•1•13•1•Updated Dec 31, 2024Dec 31, 2024

• saf-training

  Public
  This repository contains several courses to learn about using and developing SAF capabilities

  JavaScript

  •

  Other

  •4•8•13•2•Updated Dec 31, 2024Dec 31, 2024

• sample-microsoft-windows-10-stig-overlay

  Public
  Overlay for the baseline InSpec profile at https://github.com/mitre/microsoft-windows-10-stig-baseline with modifications based on provided requirements.

  Ruby

  •0•2•2•1•Updated Dec 31, 2024Dec 31, 2024

• mongodb-enterprise-advanced-3-stig-baseline

  Public
  InSpec profile for the MongoDB Enterprise Advanced DISA STIG

  profiledisainspec+ 5stiginspec-profilemitre-corporationmongodb-enterprisedisa-stig

  Ruby

  •

  Other

  •4•4•2•3•Updated Dec 31, 2024Dec 31, 2024

• amazon-linux-2023-stig-ready-baseline

  Public
  Chef InSpec to perform automated compliance checks of AL2023

  Ruby

  •

  Other

  •11•4•0•1•Updated Dec 31, 2024Dec 31, 2024

• canonical-ubuntu-18.04-lts-stig-baseline

  Public
  (WIP) canonical-ubuntu-18.04-lts-stig-baseline

  Ruby

  •

  Other

  •4•9•8•1•Updated Dec 31, 2024Dec 31, 2024

• homebrew-saf

  Public
  Ruby

  •0•1•0•1•Updated Dec 31, 2024Dec 31, 2024

• redhat-enterprise-linux-9-stig-baseline

  Public
  RHEL 9.X STIG Automated Compliance Validation Profile works with Chef InSpec to perform automated compliance checks of RHEL9.

  validationredhatinspec+ 3mitremitre-safredhat9

  Ruby

  •

  Other

  •3•6•3•1•Updated Dec 31, 2024Dec 31, 2024

• playbook

  Public
  HTML

  •3•4•0•2•Updated Dec 30, 2024Dec 30, 2024