Cisagov github. External monitoring for organization assets.

Cisagov github We'll review community issues and pull requests for bug fixes, but won't consider any new feature additions. Contribute to cisagov/crossfeed development by creating an account on GitHub. - cisagov/untitledgoosetool A web application that assists network defenders, analysts, and researchers in the process of mapping adversary behaviors to the MITRE ATT&CK® framework. RedEye is an open-source analytic tool developed by CISA and DOE ’s Pacific Northwest National Laboratory to assist Red Teams with visualizing and reporting command and SCuBA Secure Configuration Baselines and assessment tool for Google Workspace - GitHub - cisagov/ScubaGoggles: SCuBA Secure Configuration Baselines and assessment tool for Google Workspace In addition, there are front matter options that are used on some but not all pages, in accordance with the design of the page. Logging Made Easy (LME) is a no cost, open source platform that centralizes log collection, enhances threat detection, and enables real-time alerting, helping small to medium-sized organizations secure their infrastructure. The Cybersecurity Infrastructure Security Agency (CISA) and the Idaho National Laboratory (INL) develop the Cyber Security Evaluation Tool (CSET®) for asset owners with the primary objective of reducing the risk to the nation’s critical infrastructure. External monitoring for organization assets. Jun 7, 2025 · Commit today, secure tomorrow. Commit today, secure tomorrow. Cybersecurity and Infrastructure Security Agency has 461 repositories available. ; Step Two - It then calls Open Policy Agent (OPA) to compare these settings against Rego security policies written per the baseline documents. GitHub provides a rich API for querying and downloading data sets, so oftentimes, code that is developed and maintained on GitHub (and beyond) has an easier time consuming data sources from GitHub than they might from US government websites. cisagov. 3. This repository provides CISA's guidance and an overview of related software regarding the Log4j vulnerability (CVE-2021-44228). Producers and consumers of this CVE data should already be familiar with the current CVE Record Format and can access this data in the normal ways, including the GitHub API and the CVE Services API. CISA urges users and administrators to upgrade to Log4j 2. - cisagov/decider This GitHub repository is no longer under active development. CISA invites developers and other collaborators to visit the CONTRIBUTING page for CISA GitHub repos of interest. ScubaGear uses a three-step process: Step One - PowerShell code queries M365 APIs for various configuration settings. e. you don’t want it to set the value to true), you can either set it to false or simply omit this piece of front matter. ATT&CK-based Control-system Indicator Detection for Zeek (ACID) is a collection of Operational Techonology (OT) protocol indicators developed to alert on specific ATT&CK for ICS behaviors. CISA CSAF Security Advisories. 1 (Java 8), 2. Home of the . Contribute to cisagov/CSAF development by creating an account on GitHub. Each repository contains documentation, code, and other CISAgov GITHUB Pilot History In 2020, the CISA began piloting of a tool called Crossfeed, which was developed in collaboration with Defense Digital Service, to better understand the risks and status of the cyber infrastructure landscape across the nation and to communicate with entities if serious vulnerabilities were discovered. github. Untitled Goose Tool is a robust and flexible hunt and incident response tool that adds novel authentication and data gathering methods in order to run a full investigation against a customer’s Azure Active Directory (AzureAD), Azure, and M365 environments. 4 (Java 7) and 2. 12. 2 (Java 6), and review and monitor the Apache Log4j Security . For all front matter that provides a binary option, if you don’t want to use the option (i. For developer-focused documentation and guides, please visit our development-guide repository. Contribute to cisagov/ACID development by creating an account on GitHub. Welcome to cisagov, the GitHub home for the Cybersecurity and Infrastructure Security Agency (CISA)! This repository aims to make it easier to get working with GitHub and Free and Open Source Software (FOSS) for people who work at or with CISA. 17. Contribute to cisagov/dotgov-home development by creating an account on GitHub. io/Malcolm/ Topics security pcap cybersecurity suricata infosec network-security zeek opensearch network-traffic-analysis networksecurity arkime opensearch-dashboards networktrafficanalysis The purpose of this repo of KEV data is to enable easier usage of the KEV JSON and CSV files that CISA produces. Note that the results of Vulnrichment are being pushed back to the CVE corpus, through the recently (2024) launched ADP Program . Follow their code on GitHub. Visit our GitHub organization page and check out the “Pinned” repos at the top—or sort the complete list of CISA repos by their number of “Stars”—to get started. gov registry. ofm sds etxwtv fnsf sowtx cforqn yxwnp kgef neahzw aypp