search

mitre / saf

The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools developed by MITRE and the security community to streamline security automation for systems and DevOps pipelines
https://saf-cli.mitre.org
Other
131 stars 37 forks source link

Additions of Microsoft Secure Score Artifact Support for HDF Converters #2564

Open kdkir opened 3 months ago

kdkir commented 3 months ago

Microsoft Secure Score is a measurement of an organization's security posture, with a higher number indicating more recommended actions taken. Information can be found at Microsoft Secure Score.

The addition of support for Microsoft Secure score would allow for users of SAF to assess the security posture of Microsoft tenants against vendor published best practices. A JSON representation of the secure score report can be generated by security and compliance administrators of a Microsoft Tenant.

Attached is an example of the Secure Score JSON file, notated with potential mappings to the HDF schema. I would greatly appreciate the chance to discuss this potential new converter with the SAF team. ms365_sample.json

meme112233 commented 1 month ago

See https://github.com/mitre/heimdall2/pull/6007. This PR performs the conversion (draft status). PR for this issue in this repo supporting the SAF-CLI support is expected soon.