The MITRE Corporation

All

533 repositories

saf
Public
The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools developed by MITRE and the security community to streamline security automation for systems and DevOps pipelines
security json compliance mitre security-automation devsecops mitre-corporation mitre-saf security-automation-framework
TypeScript
•
Other
•41•166•116•9•Updated Nov 5, 2025Nov 5, 2025
heimdall2
Public
Heimdall Enterprise Server 2 lets you view, store, and compare automated security control scan results.
mitre-saf
TypeScript
•
Other
•70•239•268•62•Updated Nov 5, 2025Nov 5, 2025
saf_action
Public
GitHub Action for SAF CLI
mitre mitre-corporation mitre-inspec mitre-saf
Shell
•
Other
•1•7•5•3•Updated Nov 5, 2025Nov 5, 2025
ts-inspec-objects
Public
Typescript objects for InSpec profiles
TypeScript
•
Other
•2•3•7•1•Updated Nov 4, 2025Nov 4, 2025
training
Public
A CALDERA plugin
caldera caldera-plugin
Python
•17•26•1•6•Updated Nov 4, 2025Nov 4, 2025
saf-training
Public
This repository contains several courses to learn about using and developing SAF capabilities
JavaScript
•
Other
•6•15•6•3•Updated Nov 4, 2025Nov 4, 2025
secure-coding-case-studies
Public
Case studies of real secure coding issues to provide educators, project leaders, software development teams, and assessment teams insight into these critical issues and show how to avoid them.
Creative Commons Attribution 4.0 International
•2•4•21•0•Updated Nov 3, 2025Nov 3, 2025
im_sample_algorithm
Public
MITRE's Interval Management Sample Algorithm. An implementation of RTCA DO-361A Appendix C.
algorithms simulation aircraft
C++
•
Apache License 2.0
•2•1•6•0•Updated Nov 3, 2025Nov 3, 2025
nuxt-github-pages
Public
Nuxt module to fix trailing slash issues when deploying to GitHub Pages
TypeScript
•
Other
•1•2•2•7•Updated Nov 3, 2025Nov 3, 2025
tir-docs
Public
Documentation for the TIR project
JavaScript
•
Other
•1•2•13•0•Updated Oct 31, 2025Oct 31, 2025
AADAPT
Public
Adversarial Actions in Digital Asset Payment Technologies
HTML
•1•0•0•0•Updated Oct 31, 2025Oct 31, 2025
blue-agave-rey
Public
Activity Set Viewer
TypeScript
•
Apache License 2.0
•3•0•0•0•Updated Oct 31, 2025Oct 31, 2025
caldera
Public
Automated Adversary Emulation Platform
hacking cybersecurity mitre hacktoberfest red-team security-automation security-testing mitre-attack adversary-emulation caldera
Python
•
Apache License 2.0
•1.3k•6.5k•63•10•Updated Oct 30, 2025Oct 30, 2025
MCP
Public
An AI-powered plugin for Caldera that orchestrates long-running LLM workflows to automatically create adversary emulation abilities and plan operations. Optionally enriches workflows with Retrieval-Augmented Generation (RAG) using Cyber Threat Intelligence (CTI) from STIX JSON files.
Vue
•
Apache License 2.0
•0•2•0•0•Updated Oct 30, 2025Oct 30, 2025
thumbtack
Public
A web front-end providing a REST-ful API to mount and unmount forensic disk images
forensics
Python
•
Apache License 2.0
•7•23•2•2•Updated Oct 30, 2025Oct 30, 2025
cinc-auditor-alpine
Public
Minimal Alpine-based Docker image with CINC Auditor, train-k8s-container plugin, and kubectl for Kubernetes compliance scanning
0•0•0•0•Updated Oct 30, 2025Oct 30, 2025
ocaml-datalog
Public
OCaml
•
GNU Lesser General Public License v2.1
•0•0•0•0•Updated Oct 30, 2025Oct 30, 2025
datalog
Public
C
•
GNU Lesser General Public License v2.1
•0•0•0•0•Updated Oct 30, 2025Oct 30, 2025
chase
Public
OCaml
•
Other
•0•0•0•0•Updated Oct 30, 2025Oct 30, 2025
FMACM
Public
An aircraft and control model for Flight Deck Interval Management MOPS testing by RTCA SC-186 members.
c-plus-plus control-systems eurocontrol mitre-corporation eurocontrol-bada aircraft-simulation
C++
•
Apache License 2.0
•5•12•3•0•Updated Oct 29, 2025Oct 29, 2025
GraphEx
Public
Visual programming language tool designed for managing configurations and deployments
Python
•
Apache License 2.0
•0•1•8•0•Updated Oct 29, 2025Oct 29, 2025
cti
Public
Cyber Threat Intelligence Repository expressed in STIX 2.0
attack stix cti cyber-threat-intelligence
Other
•453•2k•17•0•Updated Oct 28, 2025Oct 28, 2025
saf-lambda-function
Public template
(WIP) An AWS Lambda Function to run the SAF CLI as a function in your AWS VPC
aws-lambda serverless mitre aws-security security-automation mitre-corporation aws-la mitre-saf security-automation-framework saf-cli
JavaScript
•
Other
•4•4•4•0•Updated Oct 28, 2025Oct 28, 2025
hipcheck
Public
Automatically assess and score software repositories for supply chain risk.
supply-chain-security
Rust
•
Apache License 2.0
•12•114•55•10•Updated Oct 27, 2025Oct 27, 2025
RHEL9-STIG
Public
Automated STIG Benchmark Compliance Remediation for RHEL 9 with Ansible
Jinja
•
MIT License
•21•0•0•0•Updated Oct 24, 2025Oct 24, 2025
dnp3
Public
Caldera for OT Plugin
C++
•
Apache License 2.0
•2•2•0•0•Updated Oct 23, 2025Oct 23, 2025
act
Public
MITRE Adaptive Capabilities Testing (ACT)
mitre mitre-saf mitre-act adaptive-capabilities-testing
Vue
•
Other
•1•1•9•0•Updated Oct 22, 2025Oct 22, 2025
debrief
Public
Debrief is a CALDERA plugin for gathering overall campaign information and analytics for a set of operations.
analytics caldera caldera-plugin
Python
•6•8•0•0•Updated Oct 22, 2025Oct 22, 2025
nuxt-smartscript
Public
Smart typography transformations for Nuxt - automatic superscript, subscript, and symbol formatting
mitre mitre-corporation mitre-saf
TypeScript
•
Other
•0•0•0•0•Updated Oct 21, 2025Oct 21, 2025
jsonix
Public
Powerful XML<->JSON JavaScript mapping library.
mitre mitre-corporation mitre-saf
JavaScript
•
Other
•82•14•0•0•Updated Oct 21, 2025Oct 21, 2025