NSA Cybersecurity Directorate

All

39 repositories

HIRS
Public
Trusted Computing based services supporting TPM provisioning and supply chain validation concepts. #nsacyber
validation supply-chain provisioning
validation supply-chain provisioning integrity trusted-platform-module trusted-computing
JavaScript
•
Other
•62•208•9•5•Updated Mar 17, 2026Mar 17, 2026
RIM-Tool
Public
A tool to create TCG Reference Integrity Manifest (RIM) files for use with attestation verifiers like HIRS.
firmware supply-chain uefi
firmware supply-chain uefi signature-verification trusted-platform-module trusted-computing integrity-tool spdm
Java
•
Other
•0•3•2•0•Updated Mar 13, 2026Mar 13, 2026
paccor
Public
The Platform Attribute Certificate Creator can gather component details, create, sign, and validate the TCG-defined Platform Credential. #nsacyber
certificate certificates credential
certificate certificates credential trusted-computing
C#
•
Apache License 2.0
•21•71•0•0•Updated Feb 9, 2026Feb 9, 2026
AppLocker-Guidance
Public
Configuration guidance for implementing application whitelisting with AppLocker. #nsacyber
windows applocker whitelisting
windows applocker whitelisting application-whitelisting microsoft-applocker
PowerShell
•
Other
•71•232•1•0•Updated Oct 31, 2025Oct 31, 2025
Hardware-and-Firmware-Security-Guidance
Public
Guidance for the Spectre, Meltdown, Speculative Store Bypass, Rogue System Register Read, Lazy FP State Restore, Bounds Check Bypass Store, TLBleed, and L1TF/Fo…
audit vulnerability cve
audit vulnerability cve nessus spectre guidance meltdown cve-2017-5754 cve-2017-5715 cve-2017-5753
C
•
Other
•154•852•9•3•Updated Dec 23, 2024Dec 23, 2024
nsacyber.github.io
Public
NSA Cybersecurity. Formerly known as NSA Information Assurance and the Information Assurance Directorate
github-pages
github-pages
PowerShell
•
Creative Commons Zero v1.0 Universal
•85•288•1•7•Updated Aug 17, 2024Aug 17, 2024
BAM
Public
The Binary Analysis Metadata tool gathers information about Windows binaries to aid in their analysis. #nsacyber
metadata binary binary-analysis
metadata binary binary-analysis
Python
•
Other
•30•164•8•0•Updated May 2, 2024May 2, 2024
ELITEWOLF
Public
OT security monitoring #nsacyber
Other
•73•615•0•2•Updated Jan 7, 2024Jan 7, 2024
RandPassGenerator
Public
A command-line utility for generating random passwords, passphrases, and raw keys. #nsacyber
password-generator password
password-generator password
Java
•
Other
•28•145•0•2•Updated Dec 22, 2023Dec 22, 2023
Mitigating-Web-Shells
Public
Guidance for mitigation web shells. #nsacyber
guidance webshell mitigation
guidance webshell mitigation webshells
YARA
•
Other
•206•981•2•2•Updated Jun 18, 2023Jun 18, 2023
Windows-Secure-Host-Baseline
Public archive
Configuration guidance for implementing the Windows 10 and Windows Server 2016 DoD Secure Host Baseline settings. #nsacyber
windows auditing certificates
windows auditing certificates chrome-browser audit windows-10 windows-server compliance nessus group-policy
HTML
•
Other
•291•1.6k•14•0•Updated Dec 24, 2022Dec 24, 2022
WALKOFF
Public archive
A flexible, easy to use, automation framework allowing users to integrate their capabilities and devices to cut through the repetitive, tedious tasks slowing th…
python security workflow
python security workflow devops automation framework administration integration analytics orchestration-framework
Python
•
Other
•222•1.2k•33•24•Updated Dec 12, 2022Dec 12, 2022
PRUNE
Public archive
Logs key Windows process performance metrics. #nsacyber
windows performance process
windows performance process performance-metrics etw
C#
•
Other
•13•69•0•2•Updated Dec 8, 2022Dec 8, 2022
Windows-Event-Log-Messages
Public archive
Retrieves the definitions of Windows Event Log messages embedded in Windows binaries and provides them in discoverable formats. #nsacyber
windows event-log
windows event-log
C#
•
Other
•97•406•17•1•Updated Dec 8, 2022Dec 8, 2022
Blocking-Outdated-Web-Technologies
Public archive
Guidance for blocking outdated web technologies. #nsacyber
web guidance
web guidance
PowerShell
•
Other
•19•63•0•0•Updated Dec 9, 2021Dec 9, 2021
Chinese-State-Sponsored-Cyber-Operations-Observed-TTPs
Public archive
Supporting files for the Chinese State-Sponsored Cyber Operations: Observed TTPs Cybersecurity Advisory. #nsacyber
tactics procedures techniques
tactics procedures techniques mitre-attack mitre-attack-navigator
Other
•8•45•0•0•Updated Jul 19, 2021Jul 19, 2021
HTTP-Connectivity-Tester
Public archive
Aids in discovering HTTP and HTTPS connectivity issues. #nsacyber
testing http test
testing http test https connection connectivity diagnostics powershell-module diagnostic
PowerShell
•
Other
•44•114•6•0•Updated Feb 19, 2021Feb 19, 2021
Mitigating-Obsolete-TLS
Public archive
Guidance for mitigating obsolete Transport Layer Security configurations. #nsacyber
tls ssl guidance
tls ssl guidance mitigations snort-rules
PowerShell
•
Other
•43•273•2•0•Updated Feb 3, 2021Feb 3, 2021
Event-Forwarding-Guidance
Public
Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsacyber
windows event-log siem
windows event-log siem
PowerShell
•
Other
•170•882•5•3•Updated Nov 17, 2020Nov 17, 2020
unfetter
Public archive
Identifies defensive gaps in security posture by leveraging Mitre's ATT&CK framework. #nsacyber
unfetter
unfetter
Other
•39•164•11•2•Updated May 11, 2020May 11, 2020
GRASSMARLIN
Public archive
Provides situational awareness of Industrial Control Systems (ICS) and Supervisory Control and Data Acquisition (SCADA) networks in support of network security …
visualization monitor networking
visualization monitor networking monitoring analysis network ics control-systems scada scada-security
Java
•
Other
•319•1k•24•0•Updated Feb 24, 2020Feb 24, 2020
simon-speck
Public archive
The SIMON and SPECK families of lightweight block ciphers. #nsacyber
cryptography crypto cipher
cryptography crypto cipher ciphers cryptography-library crypto-library simon speck
Other
•36•169•0•0•Updated Nov 12, 2019Nov 12, 2019
BitLocker-Guidance
Public archive
Configuration guidance for implementing BitLocker. #nsacyber
microsoft windows encryption
microsoft windows encryption audit nessus guidance bitlocker full-disk-encryption bitlocker-drive-encryption
HTML
•
Other
•41•127•0•0•Updated Jul 24, 2019Jul 24, 2019
WALKOFF-Apps
Public archive
WALKOFF-enabled applications. #nsacyber
python iot security
python iot security automation administration integration analytics orchestration-framework orchestration cybersecurity
YARA
•
Creative Commons Zero v1.0 Universal
•41•143•4•1•Updated Mar 14, 2019Mar 14, 2019
CodeGov
Public archive
Creates a code.gov code inventory JSON file based on GitHub repository information. #nsacyber
government json gov
government json gov powershell-module
PowerShell
•
Other
•18•30•0•0•Updated Jan 16, 2019Jan 16, 2019
Detect-CVE-2017-15361-TPM
Public archive
Detects Windows and Linux systems with enabled Trusted Platform Modules (TPM) vulnerable to CVE-2017-15361. #nsacyber
rsa audit vulnerability
rsa audit vulnerability cve nessus tpm trusted-platform-module
PowerShell
•
Other
•30•61•1•0•Updated Sep 4, 2018Sep 4, 2018
simon-speck-supercop
Public archive
Fast implementations of the SIMON and SPECK lightweight block ciphers for the SUPERCOP benchmark toolkit. #nsacyber
cryptography crypto cipher
cryptography crypto cipher ciphers cryptography-library crypto-library simon speck supercop
C
•
Other
•18•50•0•0•Updated Jun 13, 2018Jun 13, 2018
Driver-Collider
Public archive
Blocks drivers from loading by using a name collision technique. #nsacyber
windows driver
windows driver
C
•
Other
•23•50•0•0•Updated Dec 18, 2017Dec 18, 2017
serial2pcap
Public archive
Converts serial IP data, typically collected from Industrial Control System devices, to the more commonly used Packet Capture (PCAP) format. #nsacyber
converter pcap convert
converter pcap convert conversion control-systems scada ics-scada
Python
•
Other
•35•82•0•0•Updated Oct 25, 2017Oct 25, 2017
goSecure
Public archive
An easy to use and portable Virtual Private Network (VPN) system built with Linux and a Raspberry Pi. #nsacyber
linux raspberry-pi vpn
linux raspberry-pi vpn strongswan
Python
•
Other
•179•990•3•3•Updated Jun 27, 2017Jun 27, 2017