Skip to content

@mitre The MITRE Corporation

Change the repository type filter

All

    Repositories list

    493 repositories

    • saf-training

      Public
      This repository contains several courses to learn about using and developing SAF capabilities
      JavaScript
      Other
      41182Updated Apr 17, 2025Apr 17, 2025

    • saf

      Public
      The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools developed by MITRE and the security community to streamline security automation for systems and DevOps pipelines
      mitremitre-corporationmitre-safsecurity-automation-frameworksecurityjsoncompliancesecurity-automationdevsecops
      TypeScript
      Other
      4014811210Updated Apr 17, 2025Apr 17, 2025

    • heimdall2

      Public
      Heimdall Enterprise Server 2 lets you view, store, and compare automated security control scan results.
      mitre-saf
      TypeScript
      Other
      6522127060Updated Apr 17, 2025Apr 17, 2025

    • aws-rds-crunchy-data-postgresql-16-stig-baseline

      Public
      InSpec profile to validate the secure configuration of AWS RDS hosted Crunchy Data PostgreSQL against DISA's Crunchy Data PostgreSQL 16 STIG.
      Ruby
      Other
      0011Updated Apr 17, 2025Apr 17, 2025

    • crunchy-data-postgresql-16-stig-baseline

      Public
      Crunchy Data Postgres 16 Security Technical Implementation Guide :: Version 1, Release: 1 Benchmark Date: 13 Jun 2024
      Ruby
      Other
      0011Updated Apr 16, 2025Apr 16, 2025

    • magma

      Public
      MITRE Caldera's user interface plugin powered by VueJS
      CSS
      Apache License 2.0
      14432Updated Apr 16, 2025Apr 16, 2025

    • tir-docs

      Public
      Documentation for the TIR project
      JavaScript
      Other
      11130Updated Apr 16, 2025Apr 16, 2025

    • caldera

      Public
      Automated Adversary Emulation Platform
      hackingcybersecuritymitrered-teamsecurity-automationsecurity-testingmitre-attackadversary-emulationcalderamitre-corporation
      Python
      Apache License 2.0
      1.1k6.1k685Updated Apr 16, 2025Apr 16, 2025

    • azure-foundations-cis-baseline

      Public
      Inspec validation profile for CIS Microsoft Azure Foundations Benchmark v3.0.0 - 09-05-2024
      Ruby
      Other
      2111Updated Apr 16, 2025Apr 16, 2025

    • aws-rds-crunchy-data-postgresql-stig-baseline

      Public
      InSpec profile to validate the secure configuration of AWS RDS hosted Crunchy Data PostgreSQL against DISA's Crunchy Data PostgreSQL STIG Version 3 Release 1.
      Ruby
      Other
      2330Updated Apr 15, 2025Apr 15, 2025

    • hipcheck

      Public
      Automatically assess and score software repositories for supply chain risk.
      supply-chain-security
      Rust
      Apache License 2.0
      9105515Updated Apr 15, 2025Apr 15, 2025

    • secure-coding-case-studies

      Public
      Case studies of real secure coding issues to provide educators, project leaders, software development teams, and assessment teams insight into these critical issues and show how to avoid them.
      2300Updated Apr 15, 2025Apr 15, 2025

    • ts-inspec-objects

      Public
      Typescript objects for InSpec profiles
      TypeScript
      Other
      2376Updated Apr 15, 2025Apr 15, 2025

    • thumbtack

      Public
      A web front-end providing a REST-ful API to mount and unmount forensic disk images
      forensics
      Python
      Apache License 2.0
      72324Updated Apr 14, 2025Apr 14, 2025

    • inspec-profile-update-action

      Public
      Automatically update InSpec profiles using the latest version of DISA STIGs and CIS Benchmarks.
      HTML
      Other
      28102Updated Apr 11, 2025Apr 11, 2025

    • manx

      Public
      A CALDERA plugin
      calderacaldera-plugin
      Go
      9814Updated Apr 10, 2025Apr 10, 2025

    • saf-site-backend

      Public
      Strapi backend for the SAF site
      JavaScript
      Other
      45518Updated Apr 9, 2025Apr 9, 2025

    • tmnt

      Public
      Algorithms for training state-of-the-art neural topic models
      Python
      Apache License 2.0
      113311Updated Apr 9, 2025Apr 9, 2025

    • redhat-enterprise-linux-8-stig-baseline

      Public
      RHEL 8.X STIG Automated Compliance Validation Profile works with Chef InSpec to perform automated compliance checks of RHEL8.
      Ruby
      Other
      32142Updated Apr 9, 2025Apr 9, 2025

    • geodetic_library

      Public
      MITRE's C/C++ implementation of WGS84 geodesic algorithms documented in FAA Order 8260.58A, Appendix E.
      C++
      Apache License 2.0
      3410Updated Apr 7, 2025Apr 7, 2025

    • microsoft-windows-11-stig-baseline

      Public
      Inspec validation profile for Microsoft Windows 11 Security Technical Implementation Guide :: Version 2, Release 2 :: Benchmark Date: 15 Nov 2024
      Ruby
      Other
      0010Updated Apr 4, 2025Apr 4, 2025

    • canonical-ubuntu-24.04-lts-stig-baseline

      Public
      (WIP) InSpec profile to validate the secure configuration of Ubuntu 22.04, against DISA's Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide (STIG) Version 1, Release 1
      Ruby
      Other
      0010Updated Apr 4, 2025Apr 4, 2025

    • canonical-ubuntu-22.04-lts-stig-baseline

      Public
      (WIP) InSpec profile to validate the secure configuration of Ubuntu 22.04, against DISA's Canonical Ubuntu 22.04 LTS Security Technical Implementation Guide (STIG) Version 1, Release 1
      Ruby
      Other
      1113Updated Apr 3, 2025Apr 3, 2025

    • pickled-canary

      Public
      Assembly-based binary pattern search!
      Java
      Apache License 2.0
      41401Updated Apr 2, 2025Apr 2, 2025

    • playbook

      Public
      HTML
      4402Updated Apr 1, 2025Apr 1, 2025

    • redhat-enterprise-linux-9-stig-baseline

      Public
      RHEL 9.X STIG Automated Compliance Validation Profile works with Chef InSpec to perform automated compliance checks of RHEL9.
      validationredhatinspecmitremitre-safredhat9
      Ruby
      Other
      4643Updated Mar 30, 2025Mar 30, 2025

    • kube-secure-scanner

      Public
      A flexible, security-focused framework for scanning containers in Kubernetes environments with multiple scanning engines and comprehensive security controls.
      Shell
      Other
      1020Updated Mar 27, 2025Mar 27, 2025

    • codi

      Public
      Community and Clinical Data Initiative
      codi
      JavaScript
      Apache License 2.0
      1200Updated Mar 27, 2025Mar 27, 2025

    • ironbank_release_action

      Public
      GitHub Action to automate releases on to Iron Bank
      Other
      0000Updated Mar 24, 2025Mar 24, 2025

    • sandcat

      Public
      A CALDERA plugin
      calderacaldera-plugin
      Go
      Apache License 2.0
      396663Updated Mar 24, 2025Mar 24, 2025