Skip to content
@mitre

The MITRE Corporation

Open Source Software from the MITRE Corporation

Pinned Loading

  1. caldera Public

    Automated Adversary Emulation Platform

    Python 6k 1.1k

  2. heimdall2 Public

    Heimdall Enterprise Server 2 lets you view, store, and compare automated security control scan results.

    TypeScript 218 65

  3. vulcan Public

    A web application to streamline the development of STIGs from SRGs

    Ruby 72 20

  4. emasser Public

    eMASSer is a command-line interface (CLI) that aims to automate routine business use-cases and provide utility surrounding the Enterprise Mission Assurance Support Service (eMASS) by leveraging its…

    Ruby 38 12

  5. saf Public

    The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools developed by MITRE and the security community to streamline…

    TypeScript 147 40

Repositories

Showing 10 of 491 repositories
  • hipcheck Public

    Automatically assess and score software repositories for supply chain risk.

    Rust 103 Apache-2.0 9 55 9 Updated Mar 25, 2025
  • aws-rds-crunchy-data-postgresql-16-stig-baseline Public

    InSpec profile to validate the secure configuration of AWS RDS hosted Crunchy Data PostgreSQL against DISA's Crunchy Data PostgreSQL 16 STIG.

    Ruby 0 0 0 0 Updated Mar 25, 2025
  • redhat-enterprise-linux-9-stig-baseline Public

    RHEL 9.X STIG Automated Compliance Validation Profile works with Chef InSpec to perform automated compliance checks of RHEL9.

    Ruby 6 4 4 3 Updated Mar 25, 2025
  • azure-foundations-cis-baseline Public

    Inspec validation profile for CIS Microsoft Azure Foundations Benchmark v3.0.0 - 09-05-2024

    Ruby 1 2 0 0 Updated Mar 25, 2025
  • saf Public

    The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools developed by MITRE and the security community to streamline security automation for systems and DevOps pipelines

    TypeScript 147 40 112 (4 issues need help) 10 Updated Mar 25, 2025
  • saf-training Public

    This repository contains several courses to learn about using and developing SAF capabilities

    JavaScript 10 4 8 2 Updated Mar 25, 2025
  • heimdall2 Public

    Heimdall Enterprise Server 2 lets you view, store, and compare automated security control scan results.

    TypeScript 218 65 271 (22 issues need help) 56 Updated Mar 25, 2025
  • ts-inspec-objects Public

    Typescript objects for InSpec profiles

    TypeScript 3 2 7 5 Updated Mar 25, 2025
  • caldera Public

    Automated Adversary Emulation Platform

    Python 5,964 Apache-2.0 1,131 70 6 Updated Mar 25, 2025
  • aws-rds-crunchy-data-postgresql-stig-baseline Public

    InSpec profile to validate the secure configuration of AWS RDS hosted Crunchy Data PostgreSQL against DISA's Crunchy Data PostgreSQL STIG Version 3 Release 1.

    Ruby 3 2 3 0 Updated Mar 24, 2025
View all repositories