"topic:nist-csf" — Search

62 results for “topic:nist-csf”

Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking

HTML653146Updated 21 hours ago

27002asvscis18cmmccompliancecscgrchipaaiso27001nistnist-csfnist800-53owaspowasp-top-10pcipci-dsssecuritysoc2

turbot/steampipe-mod-aws-compliance

Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe and Steampipe.

Puppet41168Updated 1 month ago

awsciscis-benchmarkcompliancehacktoberfesthipaanist-csfpcipci-dsspowerpipepowerpipe-modrbisecuritysqlsteampipesteampipe-mod

mikeprivette/NIST-to-Tech

An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)

12914Updated 2 days ago

blueteamcyber-securitycyber-security-teamcybersecurityinfosecinfosec-approvedinfosec-referencenetsecnetsec-toolsnetsecuritynistnist-csfnist-cybersecurity-frameworknist800-53pentestpentestingpentesting-toolspurpleteamredteamvulnerability

UnicisTech/unicis-platform-ce

A modern, all-in-one Governance, Risk & Compliance (GRC) solution designed for privacy, security, and compliance teams. As an open-source alternative to Vanta and Drata, this platform empowers teams with full control, flexibility, and transparency—no vendor lock-in, just powerful compliance automation and risk management. ISO27k, GDPR, SOC2, NIST

TypeScript7452Updated 2 days ago

awareness-appcompliance-automationcompliance-platformcybersecuritycybersecurity-toolsgdprgovernance-risk-compliancegrciso27001mvspnis2nist-csfopen-sourceopensourceprivacyprivacy-toolsrisk-managementsecuritysoc2

counteractive/security-controls

No description provided.

HTML4920Updated 3 months ago

compliancecontrolsinfosecnist-csfnist800-171nist800-53risk

mukul975/Anthropic-Cybersecurity-Skills

734+ structured cybersecurity skills for AI agents · MITRE ATT&CK mapped · agentskills.io standard · Claude Code, Copilot, Codex CLI, Cursor, Gemini CLI

Python234Updated 10 hours ago

agent-skillsai-agentsblue-teamclaudeclaude-codecloud-securitycopilotcybersecuritycybersecurity-skillsdigital-forensicshacktoberfestincident-responsemalware-analysismitre-attacknist-csfopen-sourcepenetration-testingred-teamsecuritythreat-hunting

AbeWinters/control-mappings

Overview of existing mappings from and to cyber security controls

196Updated 1 week ago

cis-controlscybersecurityiso-27001nist-csfnist800-53security-controls

ciso360ai/ciso360ai-archiveArchived

CISO360.AI

Shell118Updated 3 weeks ago

attackattack-surface-managementcompliancecybersecuritygamificationhibpidentitynistnist-csfoffensive-securitypentestprivacyriskrisk-managementvulnerability-assessmentvulnerability-scanners

ChrisJabb21/NIST-CSF-Security-Incident-Report

A mock security incident report done as part of Cybersecurity documentation portfolio and Google's Coursera Cybersecurity Certificate.

84Updated 3 months ago

documentationincident-responsenistnist-csf

JJordan1983/grc_portfolio

Governance, Risk & Compliance documentation aligned to FedRAMP Moderate, NIST SP 800-53 Rev. 5, DoD RMF, and NIST AI RMF. Includes policies, risk register, vendor assessment, continuous monitoring, vulnerability management, and AI governance materials.

71Updated 2 months ago

aiai-compliancecompliance-policycybersecurityfedrampgrcnistnist-csfnist800-53risk-management

fixitgearware/NIST-Cybersecurity-Framework-2.0-

The NIST Cybersecurity Framework 2.0 outlines steps to be taken by the industry, governement agencies, and small businesses in organization risk management.

74Updated 4 days ago

blue-teacybersecuritycybersecurity-frameworknist-csfnist800-53pentestingplanning-risk-assessmentpurple-teamrisk-assessmentrisk-management

ashwinaltekar/CS4782

Git Repo for Spring 2017

JavaScript68Updated 5 years ago

csfjsonnist-csfregulationsriskvisual

clay-good/nisify

Nisify is a NIST CSF 2.0 compliance evidence aggregation tool that automatically collects technical evidence from 13 cloud platforms, maps it to the 106 NIST controls alongside your manual governance documents, and provides a transparent, real-time dashboard for measuring compliance maturity and tracking gaps.

Python40Updated 3 weeks ago

cloud-securitycompliancedevsecopsevidence-managementgrcnist-csfpythonsecurity-compliance

mamb4comm/Heartland-Data-Breach-Analysis

No description provided.

42Updated 1 year ago

analysisdata-breachnist-csfrisk-analysisrisk-assessmentsecurity-audit

Glimpz1/grc-mappings

OLIR mappings & OSCAL content

31Updated 3 weeks ago

nist-csfoliroscalpci-dss

clay-good/attestful

Prove your compliance posture with automated evidence and clear visualization. Open-source, OSCAL-native evidence collection from 30+ platforms with self-hosted/air-gapped deployment support.

Python30Updated 3 weeks ago

cloud-securitycompliance-as-codeevidence-collectionfedrampgrcnist-csfoscalsoc2

ashumate/CSF-Pyramid

This is a visualization that I developed to help when discussing the functions of the NIST CSF

31Updated 3 years ago

nist-csfvisualization

HailBytes/security-policy-templates

Comprehensive NIST CSF-aligned security policy templates for SMBs. Ready-to-use policies covering incident response, data protection, infrastructure security, and compliance requirements with practical implementation guidance and deployment timelines.

21Updated 1 month ago

business-securitycompliancecybersecuritydata-protectiongovernanceincident-responseinfosecnistnist-csfnist-frameworkpolicy-templatesrisk-managementsecurity-policy

binhnhu1409/Cybersecurity_UseNISTCSF

Use the NIST Cybersecurity Framework to respond to a security incident.

20Updated 1 year ago

cybersecuritynist-csf

BenjaminTetteh/Cybersecurity-Portfolio

Welcome to my cybersecurity practical projects repository! This collection showcases the hands-on exercises and projects I completed as part of my cybersecurity certifications and personal initiatives. These projects demonstrate my understanding of key security concepts and my ability to apply them in practical scenarios.

20Updated 1 year ago

codecybersecurityframeworksgrchipaalinuxnist-csfnist800-53pci-dsspythonsql

tomwechsler/active-cyber-program

Active Cyber Program (ACP) is an open framework for assessing and certifying whether an organization operates an active and effective cybersecurity program.

20Updated 8 hours ago

cisacismcisspcybersecurityiso27001it-securitynist-csf

tanyaleepr/panama-papers

Vigilante Vixen has learned that there were many security vulnerabilities from their technical, behavioral, law, and human resources aspects. Despite us not being directly involved in offshore financial services or the legal profession, technology roles have a considerable amount of opportunity to review this case and implement security regulations

10Updated 1 year ago

behavioral-analysiscompliancecyber-threat-analystdata-leakdata-leakage-preventioninfosecitnist-csfnist800-171nist800-53panama-papersrisk-analysisrisk-assessmentrisk-managementvulnerability-assessment

mroptimism/NISTCSFIncidentAnalysis

No description provided.

10Updated 1 year ago

incident-report-analysisincident-responsenistnist-csfnistcsf

neviarrawlinson/internal-security-audit

Enterprise-style internal security audit project aligned with NIST and governance best practices.

10Updated 2 months ago

compliancecyber-securitygrcinternal-auditnist-csfrisk-management

Dariusz-Piasecki/Botium-Toys-Security-Audit

This project features a comprehensive NIST CSF-based security audit for Botium Toys. It focuses on assessing system resilience, identifying critical vulnerabilities, and verifying compliance with PCI DSS, GDPR, and SOC regulations.

10Updated 1 month ago

compliancecybersecuritygdprnist-csfpci-dssrisk-assessmesecurity-auditsoc

thetayyab/secure-by-design-aws-architecture-review

Security architecture review of a three-tier web application deployed on AWS. The project includes threat modeling, security findings, NIST Cybersecurity Framework mapping, and security recommendations to identify risks and improve the security posture of a cloud-based system.

10Updated 5 days ago

aws-architecturecloud-securitycybersecuritynist-csfsecurity-architecturethreat-modeling

tanyaleepr/incident-response-analysis-NISTCSF

A multimedia company that offers web design services, graphic design, and social media marketing solutions to small businesses recently experienced a DDoS attack, which compromised the internal network for two hours until it was resolved using NIST-CSF.

10Updated 1 year ago

incident-report-analysisnistnist-csfnistcsf

gabrielrovesti/Security-and-Risk-ReportArchived

A report made for the course of Security and Risk, M.Sc. in Computer Science, UniPD

Typst10Updated 11 months ago

nistnist-csfsecurity-and-risk

KaledSML/nist-sentinel

🛡️ Cybersecurity audit support tool based on the NIST CSF 2.0 Framework. Features visual Kanban management and local data persistence. 🐯

JavaScript10Updated 3 weeks ago

audit-itcompliancecybersecurityhtmljavascriptkanbannist-csfvanilla-js

hell-99/AEGIS

Autonomous IDS/IPS with ensemble ML voting, post-quantum cryptography, Kubernetes Zero Trust, self-healing watchdog, and live SOC dashboard

Python10Updated 2 weeks ago

autonomous-securitycybersecurityensemble-learningflaskids-ipsintrusion-detectionkubernetesmachine-learningnist-csfpost-quantum-cryptographypythonself-healingsiemthreat-detectionzero-trust

Page 1 of 3