🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as an archive.

An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.

A compliance analysis tool which enables organizations to more quickly articulate their compliance posture and also generate supporting evidence artifacts

RampControl manages and tracks security compliance per FedRAMP requirements. It allows users to add new system security plans, manage POA&M entries, and export data in OSCAL format.