MITRE SAF

Security Automation Tools

The MITRE Security Automation Framework(tm) provides a comprehensive suite of open-source tools to support every phase of the security automation life cycle. From planning and authoring security requirements to validating controls and visualizing results, SAF tools enable teams to build, test, and maintain secure systems efficiently.

Available Tools

Complete Security Automation Toolkit

MITRE Heimdall(tm)

Security data visualization and analysis platform. View compliance dashboards, compare results, and generate reports.

View Details → Try Demo → GitHub →

MITRE SAF CLI(tm)

Command-line tool for security automation. Convert security tool outputs to HDF, generate InSpec profiles, and more.

View Details → Documentation → GitHub →

MITRE Vulcan(tm)

Security guidance authoring tool. Create and edit security requirements documents that serve as the foundation for automation.

View Details → Try Demo → GitHub →

MITRE eMASSer(tm)

eMASS integration tool. Automate interactions with Enterprise Mission Assurance Support Service to keep compliance packages up to date.

View Details → GitHub →

Security Automation Content

Browse security validation profiles and hardening content for various platforms and compliance frameworks.

Browse Content →

Getting Started

Choose Your Starting Point

Jump in at any phase of the security automation life cycle based on your current needs and maturity level.

New to Security Automation?

Start by validating your systems with existing InSpec profiles, then visualize the results in MITRE Heimdall.

Browse Security Profiles → Learn About MITRE Heimdall →

Already Running Security Scans?

Use MITRE SAF CLI to convert your existing security tool outputs (Nessus, SonarQube, etc.) into a common format.

Learn About MITRE SAF CLI → Normalization Guide →

Creating Custom Requirements?

Use MITRE Vulcan to author security guidance documents, then generate InSpec profiles from your requirements.

Learn About MITRE Vulcan → Planning Guide →