PingCastle - Get Active Directory Security at 80% in 20% of the time

Collection of pure Rust elliptic curve implementations: NIST P-224, P-256, P-384, P-521, secp256k1, SM2

Open Security Controls Assessment Language (OSCAL)

CISO Assistant is a one-stop-shop for GRC, covering Risk, AppSec and Audit Management and supporting +70 frameworks worldwide with auto-mapping: NIST CSF, ISO 27001, SOC2, CIS, PCI DSS, NIS2, CMMC, PSPF, GDPR, HIPAA, Essential Eight, NYDFS-500, DORA, NIST AI RMF, 800-53, 800-171, CyFun, CJIS, AirCyber, NCSC, ECC, SCF and so much more

A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.

Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking. https://gapps.darkbanner.com

A simple Java command-line utility to mirror the CVE JSON data from NIST.

Tool to find CVEs and Exploits.

NIST Biometric Image Software (Java Implementation)

Periodic table, physical constants, and molecule parsing for quantum chemistry.

Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time threat information, gain a competitive advantage, and stay informed about the latest trends.

Industry Working Group on Automated Cryptographic Algorithm Validation

🔒 Laravel validation rules that follow the password related recommendations found in NIST Special Publication 800-63B section 5.

NIST/NCCoE Mobile Threat Catalogue

The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent.

Docker Enterprise Edition Security Controls for Compliance

An open source reference card application for NIST FIPS 201-2 / NIST SP800-73-4, targeting Javacard 3.0.4+

A simple wrapper for the National Vulnerability CVE/CPE API

Improved version of the NIST Statistical Test Suite (STS)

A Java library for calculating CVSSv2 and CVSSv3 scores and vectors