reference/tools-templates at master · tsudo/reference

Name	Name	Last commit message	Last commit date
parent directory ..
20_CRI_Ransomware_Playbook.md	20_CRI_Ransomware_Playbook.md
AD_DesignRecommendations.md	AD_DesignRecommendations.md
AWS_Security_Samples.md	AWS_Security_Samples.md
AWS_Security_Services_Best_Practices.md	AWS_Security_Services_Best_Practices.md
ActiveDirectoryDesignGuide.md	ActiveDirectoryDesignGuide.md
AuditScripts_Critical_Security_Control_Executive_Assessment_Tool_v7.0c.csv	AuditScripts_Critical_Security_Control_Executive_Assessment_Tool_v7.0c.csv
AuditScripts_Critical_Security_Control_Executive_Assessment_Tool_v7.0c.md	AuditScripts_Critical_Security_Control_Executive_Assessment_Tool_v7.0c.md
AuditScripts_Critical_Security_Control_Manual_Assessment_Tool_v7.0b.csv	AuditScripts_Critical_Security_Control_Manual_Assessment_Tool_v7.0b.csv
AuditScripts_Critical_Security_Control_Manual_Assessment_Tool_v7.0b.md	AuditScripts_Critical_Security_Control_Manual_Assessment_Tool_v7.0b.md
AuditScripts_Critical_Security_Control_Master_Mappings_v7.0d.csv	AuditScripts_Critical_Security_Control_Master_Mappings_v7.0d.csv
AuditScripts_Critical_Security_Control_Master_Mappings_v7.0d.md	AuditScripts_Critical_Security_Control_Master_Mappings_v7.0d.md
Azure_Policy_Definitions.md	Azure_Policy_Definitions.md
CISO_Mindmap_SANS.md	CISO_Mindmap_SANS.md
CIS_CAT_Centralized_Reporting.md	CIS_CAT_Centralized_Reporting.md
CIS_CAT_Pro_Assessor.md	CIS_CAT_Pro_Assessor.md
Checkov_IaC_Scanner.md	Checkov_IaC_Scanner.md
Cloud_Custodian.md	Cloud_Custodian.md
Cloudflare_Docs.md	Cloudflare_Docs.md
Cloudflare_Terraform_Provider.md	Cloudflare_Terraform_Provider.md
Copy_of_Financial_Services_Sector_Cybersecurity_Profile_MacroEnabled_Assessment_w_User_Guide_and_Mappings.csv	Copy_of_Financial_Services_Sector_Cybersecurity_Profile_MacroEnabled_Assessment_w_User_Guide_and_Mappings.csv
Copy_of_Financial_Services_Sector_Cybersecurity_Profile_MacroEnabled_Assessment_w_User_Guide_and_Mappings.md	Copy_of_Financial_Services_Sector_Cybersecurity_Profile_MacroEnabled_Assessment_w_User_Guide_and_Mappings.md
CrowdStrike_GitHub_Org.md	CrowdStrike_GitHub_Org.md
Effective_Compliance_Program.md	Effective_Compliance_Program.md
FFIEC_CCAT_v2.csv	FFIEC_CCAT_v2.csv
FFIEC_CCAT_v2.md	FFIEC_CCAT_v2.md
FFIEC_Cyber_Assessment_Tool_v2.1_locked.csv	FFIEC_Cyber_Assessment_Tool_v2.1_locked.csv
FFIEC_Cyber_Assessment_Tool_v2.1_locked.md	FFIEC_Cyber_Assessment_Tool_v2.1_locked.md
FSSCC_ACAT_November_2015_V1_0_TLP_WHITE.csv	FSSCC_ACAT_November_2015_V1_0_TLP_WHITE.csv
FSSCC_ACAT_November_2015_V1_0_TLP_WHITE.md	FSSCC_ACAT_November_2015_V1_0_TLP_WHITE.md
FedRAMP-ATO-Letter-Template.md	FedRAMP-ATO-Letter-Template.md
FedRAMP-Initial-Authorization-Package-Checklist.csv	FedRAMP-Initial-Authorization-Package-Checklist.csv
FedRAMP-Initial-Authorization-Package-Checklist.md	FedRAMP-Initial-Authorization-Package-Checklist.md
FedRAMP-POAM-Template.csv	FedRAMP-POAM-Template.csv
FedRAMP-POAM-Template.md	FedRAMP-POAM-Template.md
FedRAMP-SAP-Template.md	FedRAMP-SAP-Template.md
FedRAMP-SAR-Template.md	FedRAMP-SAR-Template.md
FedRAMP-SSP-High-Baseline-Template.md	FedRAMP-SSP-High-Baseline-Template.md
GPG_CLI_Cheatsheet.md	GPG_CLI_Cheatsheet.md
HHS_FaxMail_PHI_Checklist.md	HHS_FaxMail_PHI_Checklist.md
HIPAA_Compliance_Checklist_Download.md	HIPAA_Compliance_Checklist_Download.md
HIPAA_Overview.md	HIPAA_Overview.md
IPD - Active Directory Domain Services version 2.2.md	IPD - Active Directory Domain Services version 2.2.md
MITRE_CAR.md	MITRE_CAR.md
Microsoft_PasswordGuidance.md	Microsoft_PasswordGuidance.md
Microsoft_Security_Code_Samples.md	Microsoft_Security_Code_Samples.md
NIST_OSCAL_CLI.md	NIST_OSCAL_CLI.md
Office_365___Customer_Security_Considerations_Workbook.csv	Office_365___Customer_Security_Considerations_Workbook.csv
Office_365___Customer_Security_Considerations_Workbook.md	Office_365___Customer_Security_Considerations_Workbook.md
PCI___DSS_Version_3.2__Feb_2018__PCIDSS_QRGv3_2.md	PCI___DSS_Version_3.2__Feb_2018__PCIDSS_QRGv3_2.md
PHI_18_Identifiers.md	PHI_18_Identifiers.md
README.md	README.md
RiskRegister_ControlsLibrary_TEMPLATE.csv	RiskRegister_ControlsLibrary_TEMPLATE.csv
RiskRegister_ControlsLibrary_TEMPLATE.md	RiskRegister_ControlsLibrary_TEMPLATE.md
SANS_ISC.md	SANS_ISC.md
SAP-AA-FedRAMP-High-Security-Test-Case-Procedures-Template.csv	SAP-AA-FedRAMP-High-Security-Test-Case-Procedures-Template.csv
SAP-AA-FedRAMP-High-Security-Test-Case-Procedures-Template.md	SAP-AA-FedRAMP-High-Security-Test-Case-Procedures-Template.md
SAQ_InstrGuidelines_v3_2_1.md	SAQ_InstrGuidelines_v3_2_1.md
SAR-AA-FedRAMP-Risk-Exposure-Table-Template.csv	SAR-AA-FedRAMP-Risk-Exposure-Table-Template.csv
SAR-AA-FedRAMP-Risk-Exposure-Table-Template.md	SAR-AA-FedRAMP-Risk-Exposure-Table-Template.md
SSP-A04-FedRAMP-PIA-Template.md	SSP-A04-FedRAMP-PIA-Template.md
SSP-A05-FedRAMP-RoB-Template.md	SSP-A05-FedRAMP-RoB-Template.md
SSP-A06-FedRAMP-ISCP-Template.md	SSP-A06-FedRAMP-ISCP-Template.md
SSP-A09-FedRAMP-High-CIS-Workbook-Template.csv	SSP-A09-FedRAMP-High-CIS-Workbook-Template.csv
SSP-A09-FedRAMP-High-CIS-Workbook-Template.md	SSP-A09-FedRAMP-High-CIS-Workbook-Template.md
SSP-A12-FedRAMP-Laws-and-Regulations-Template.csv	SSP-A12-FedRAMP-Laws-and-Regulations-Template.csv
SSP-A12-FedRAMP-Laws-and-Regulations-Template.md	SSP-A12-FedRAMP-Laws-and-Regulations-Template.md
SSP-A13-FedRAMP-Integrated-Inventory-Workbook-Template.csv	SSP-A13-FedRAMP-Integrated-Inventory-Workbook-Template.csv
SSP-A13-FedRAMP-Integrated-Inventory-Workbook-Template.md	SSP-A13-FedRAMP-Integrated-Inventory-Workbook-Template.md
STUDY_UsabilityofPassphrases_20120711.md	STUDY_UsabilityofPassphrases_20120711.md
TSI_Type_Diagram.md	TSI_Type_Diagram.md
Tenable_Python_SDK.md	Tenable_Python_SDK.md
The One Page Linux Manual.md	The One Page Linux Manual.md
Ticket_Flow_Chart.md	Ticket_Flow_Chart.md
VSA CORE FINAL 2022.csv	VSA CORE FINAL 2022.csv
VSA CORE FINAL 2022.md	VSA CORE FINAL 2022.md
VSA Questionnaire 2019 FULL Final.csv	VSA Questionnaire 2019 FULL Final.csv
VSA Questionnaire 2019 FULL Final.md	VSA Questionnaire 2019 FULL Final.md
VSA Questionnaire 2021 FULL Final.csv	VSA Questionnaire 2021 FULL Final.csv
VSA Questionnaire 2021 FULL Final.md	VSA Questionnaire 2021 FULL Final.md
VSA_Questionnaire_Vendor_Security_Alliance.md	VSA_Questionnaire_Vendor_Security_Alliance.md
_FFIEC_CCAT_v0.2_20190124.csv	_FFIEC_CCAT_v0.2_20190124.csv
_FFIEC_CCAT_v0.2_20190124.md	_FFIEC_CCAT_v0.2_20190124.md
hipaajournal.com-HIPAA Encryption Requirements.md	hipaajournal.com-HIPAA Encryption Requirements.md
small_business_budget_implementation_20_security_controls_33744.md	small_business_budget_implementation_20_security_controls_33744.md

Name

Last commit message

Last commit date

20_CRI_Ransomware_Playbook.md

AD_DesignRecommendations.md

AWS_Security_Samples.md

AWS_Security_Services_Best_Practices.md

ActiveDirectoryDesignGuide.md

AuditScripts_Critical_Security_Control_Executive_Assessment_Tool_v7.0c.csv

AuditScripts_Critical_Security_Control_Executive_Assessment_Tool_v7.0c.md

AuditScripts_Critical_Security_Control_Manual_Assessment_Tool_v7.0b.csv

AuditScripts_Critical_Security_Control_Manual_Assessment_Tool_v7.0b.md

AuditScripts_Critical_Security_Control_Master_Mappings_v7.0d.csv

AuditScripts_Critical_Security_Control_Master_Mappings_v7.0d.md

Azure_Policy_Definitions.md

CISO_Mindmap_SANS.md

CIS_CAT_Centralized_Reporting.md

CIS_CAT_Pro_Assessor.md

Checkov_IaC_Scanner.md

Cloud_Custodian.md

Cloudflare_Docs.md

Cloudflare_Terraform_Provider.md

Copy_of_Financial_Services_Sector_Cybersecurity_Profile_MacroEnabled_Assessment_w_User_Guide_and_Mappings.csv

Copy_of_Financial_Services_Sector_Cybersecurity_Profile_MacroEnabled_Assessment_w_User_Guide_and_Mappings.md

CrowdStrike_GitHub_Org.md

Effective_Compliance_Program.md

FFIEC_CCAT_v2.csv

FFIEC_CCAT_v2.md

FFIEC_Cyber_Assessment_Tool_v2.1_locked.csv

FFIEC_Cyber_Assessment_Tool_v2.1_locked.md

FSSCC_ACAT_November_2015_V1_0_TLP_WHITE.csv

FSSCC_ACAT_November_2015_V1_0_TLP_WHITE.md

FedRAMP-ATO-Letter-Template.md

FedRAMP-Initial-Authorization-Package-Checklist.csv

FedRAMP-Initial-Authorization-Package-Checklist.md

FedRAMP-POAM-Template.csv

FedRAMP-POAM-Template.md

FedRAMP-SAP-Template.md

FedRAMP-SAR-Template.md

FedRAMP-SSP-High-Baseline-Template.md

GPG_CLI_Cheatsheet.md

HHS_FaxMail_PHI_Checklist.md

HIPAA_Compliance_Checklist_Download.md

HIPAA_Overview.md

IPD - Active Directory Domain Services version 2.2.md

MITRE_CAR.md

Microsoft_PasswordGuidance.md

Microsoft_Security_Code_Samples.md

NIST_OSCAL_CLI.md

Office_365___Customer_Security_Considerations_Workbook.csv

Office_365___Customer_Security_Considerations_Workbook.md

PCI___DSS_Version_3.2__Feb_2018__PCIDSS_QRGv3_2.md

PHI_18_Identifiers.md

README.md

RiskRegister_ControlsLibrary_TEMPLATE.csv

RiskRegister_ControlsLibrary_TEMPLATE.md

SANS_ISC.md

SAP-AA-FedRAMP-High-Security-Test-Case-Procedures-Template.csv

SAP-AA-FedRAMP-High-Security-Test-Case-Procedures-Template.md

SAQ_InstrGuidelines_v3_2_1.md

SAR-AA-FedRAMP-Risk-Exposure-Table-Template.csv

SAR-AA-FedRAMP-Risk-Exposure-Table-Template.md

SSP-A04-FedRAMP-PIA-Template.md

SSP-A05-FedRAMP-RoB-Template.md

SSP-A06-FedRAMP-ISCP-Template.md

SSP-A09-FedRAMP-High-CIS-Workbook-Template.csv

SSP-A09-FedRAMP-High-CIS-Workbook-Template.md

SSP-A12-FedRAMP-Laws-and-Regulations-Template.csv

SSP-A12-FedRAMP-Laws-and-Regulations-Template.md

SSP-A13-FedRAMP-Integrated-Inventory-Workbook-Template.csv

SSP-A13-FedRAMP-Integrated-Inventory-Workbook-Template.md

STUDY_UsabilityofPassphrases_20120711.md

TSI_Type_Diagram.md

Tenable_Python_SDK.md

The One Page Linux Manual.md

Ticket_Flow_Chart.md

VSA CORE FINAL 2022.csv

VSA CORE FINAL 2022.md

VSA Questionnaire 2019 FULL Final.csv

VSA Questionnaire 2019 FULL Final.md

VSA Questionnaire 2021 FULL Final.csv

VSA Questionnaire 2021 FULL Final.md

VSA_Questionnaire_Vendor_Security_Alliance.md

_FFIEC_CCAT_v0.2_20190124.csv

_FFIEC_CCAT_v0.2_20190124.md

hipaajournal.com-HIPAA Encryption Requirements.md

small_business_budget_implementation_20_security_controls_33744.md

tools-templates

Operational artifacts — checklists, playbooks, assessment tools, policy scaffolds, IaC scanners, and control self-assessment spreadsheets.

Group	Items
CIS assessment tools	CIS-CAT Pro Assessor, CIS-CAT Centralized Reporting, AuditScripts Critical Security Control assessment tools (executive, manual, mappings)
Active Directory	AD Design Recommendations, AD Design Guide
AWS	AWS Security Samples, AWS Security Services Best Practices
Cloud / IaC	Checkov IaC Scanner, Cloud Custodian, Cloudflare Docs + Terraform Provider, Azure Policy Definitions
Playbooks	CRI Ransomware Playbook, CISO Mindmap (SANS)
Financial sector	Financial Services Sector Cybersecurity Profile (assessment + user guide + mappings)

Discovery

Filter CATALOG.csv by content_type=tool-template.

awk -F',' '$4=="tool-template"' ../CATALOG.csv

Notes

Many items here are link stubs (format=LINK in CATALOG.csv) pointing to upstream tool docs — follow source_url for the canonical version.
AuditScripts CSVs are directly parseable control assessment tables — useful for automated gap analysis.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

README.md

tools-templates

Contents

Discovery

Notes

FilesExpand file tree

tools-templates

Directory actions

More options

Directory actions

More options

Latest commit

History

tools-templates

Folders and files

parent directory

README.md

tools-templates

Contents

Discovery

Notes