Good list of open source security projects ajit gaddam. A national security agency cyber tool that allows computer systems to maintain a. Join them to grow your own development teams, manage permissions, and collaborate on projects. Nsa shares cyber tool on agencys corporate github website. Nsas github account opensources 32 internal projects to the public. So far, it lists 32 different projects, although some. In june, the nsas technology transfer program brought the number of opensource software projects up to 32 on the agencys github page, a substantial. Also it has a great number of plugins which allow to extend the. Will reside on the nsa github repository a web enabled prototype tool that implements the open checklist interactive language ocil capabilities for creating. Recently released to github by the nsa, simps noteworthy addition to open source channels is just the beginning.
Jun 22, 2017 github is an online service designed for sharing code amongst programmers and open source community, and so far, the nsa is sharing 32 different projects as part of the nsa technology transfer program ttp, while some of these are coming soon. T he security agency has released the source code of the system integrity management platform, simp, on github. Jun 21, 2017 the nsa regularly works in secret, but it started opening itself to the world after edward snowden leaks in 20. Nsa open sources its linuxbased cyber security tool hack news. Nsas github account has 32 open source projects for the public. Nsa releases linuxbased open source infosec tool security. For those who are not familiar with nsas github repository, it was launched this spring by the agency. Welcome to the national security agencys open source software site.
The national security agency nsa has created in github its own profile, in order to share with the community a repository with some of the projects developed by them. Jun 19, 2017 their github site now contains 32 open source projects, written by the nsa developers, distributed across two accounts. Title implies nsa and github employees were duped with a rickroll. Short for systems integrity management platform, simp helps organizations ensure that their security posture lines up with standards and best. Jun 21, 2017 nsas github account opensources 32 internal projects to the public. The national security agency nsa the united states intelligence agency which is known for its secrecy and working in the dark has finally joined github and launched an official github page. No software company has been quite as collaborative with the nsa as microsoft has, e.
Nsas github account has open sourced 32 secret projects. Simp is located on an nsawide github page that the agency. Every alternate day, we are greeted with new revelations regarding its policies and tools being used to track people. It is an interactive disassembler, which is widely used for software reversing. Nifi implements concepts of flowbased programming and solves common data flow. The agency has joined twitter in the same year after edward leaks and now opened a github account. In his presentation, trevor plans to introduce the added value simp brings to it professionals who must build and maintain rhelcentosbased infrastructures in accordance with federal and industry compliance regulations. Scans word documents and builds a list of referenced fonts not installed in the windows fonts directory1. Ghidra is a software reverse engineering sre framework. Nsa promotes tech transfer, releases dozens of opensource. Jul 14, 2015 the systems integrity management platform simp was released to the code repository github over the weekend. The systems integrity management platform simp was released to the code repository github over the weekend. The national security agency has opened its github account and presented an official github page.
It is open source software made publicly available by the national security agency on an apache license. Due to strict regulations on releasing information, this project is cautious what is releases e. The nsa today revealed it has uploaded source code to github to help. Sharing software could benefit the nations cybersecurity while also benefiting businesses and economic growth, officials say. The government agency known for its secrecy is shedding some light on its work this week. Its kinda funny because the same national security agency nsa, i mean our own nsa that wants its hands on our data now offers an open source tool. And i dont terribly care, compared to the products i have seen sales people sell successfully, github is like vaccines its a good thing despite how. Nsa open sources its linuxbased cyber security tool. Simp helps to keep networked systems compliant with security standards, the nsa said. The nsa employs geniuslevel coders and brightest mathematicians, who continually work to break codes, gather intelligence on everyone, and develop. Nsa releases open source network security tool for. The following open source software was developed within the national security agency and is now available to the public. The national security agency nsa has joined github with more than 30 open source projects as part of the. Simp is an open source framework designed around the concept that individuals and organizations should not need to repeat the work of automating the basic components of their operating system infrastructure.
But this is not the story which the media tends to tell. National security agency nsa, a nationallevel intelligence agency of the united states department of defense, which is known for its secretive operations and likes to be keep its work private, has now gone public with a handful of their projects through its own official github page. National security agency opens the nsa github account that. It is modular and uses puppet in its base to enforce configurations. Jul 15, 2015 t he security agency has released the source code of the system integrity management platform, simp, on github. An anonymous reader quotes a report from the hacker news. Nsa releases network security tool will it admins use it. Official github account for nsa cybersecurity directorate. Jul 17, 2015 nsa releases open source network security tool for linux i cant wait to try out this bit of software, i am sure there are no back doors created by the nsa. Nsa said it released the tool to avoid duplication after us government departments and other groups tried to replicate the product in order to meet compliance requirements set by us defence and intelligence bodies.
The us intelligence agency employees numerous excellent experts that in the past demonstrated extraordinary abilities. Jun 21, 2017 nsa opens github account lists 32 projects developed by the agency june 21, 2017 swati khandelwal the national security agency nsa the united states intelligence agency which is known for its secrecy and working in the dark has finally joined github and launched an official github page. Nsa releases open source security tool for linux slashdot. Recently, it was announced that nsa will be continuing its phone spying program for another six months. Nsa opens github account lists 32 projects developed by the agency.
For the latest information on getting help with simp, please see the help section of the documentation. Middleware adapter to proxy the github issues api as an open311 georeport v2 endpoint1. Nsa opens github account, lists 32 projects developed by. Nsa and github sites spoofed with rickroll in harmless proof of concept using windows cryptoapi. Github is a webbased git or version control repository and internet hosting service. Github is home to over 40 million developers working together. Nsa releases open source network security tool for linux. The nsa today revealed it has uploaded source code to github to help it admins lock down their networks of linux machines. Nsa releases open source network security tool for linux i cant wait to try out this bit of software, i am sure there are no back doors created by the nsa. Nsa opens github account lists 32 projects developed by the. Feb 18, 2020 simp is a framework maintained by the nsa and helps organizations with system compliance and system integrity. Jul 17, 2015 the united states national security agency nsa has released a network security tool for government and the private sectors to help secure their networks against cyber attacks.
Insert in comments below if you have any good reference projects or open source security tools. A small project i worked recently where i created a testlab, installed puppet, and applied level 1 cis benchmarks to windows and linux hosts across the board. If you are looking to use the simp materials on an existing system, instructions are available in the simp documentation. Dubbed systems integrity management platform simp, the tool is now publicly available on the popular source code sharing website github. Jun 20, 2017 nsas github account has 32 open source projects for public. Jun 21, 2017 it is official, the national security agency nsa has presented its github page that includes 32 projects as part of the nsa technology transfer program. At its core, simp is a collection of custom puppet modules and ruby script used together to promote security best practice and to enforce regulatory compliance. When included within the simp ecosystem, security compliance settings will be managed from the puppet server, but only on the systems running kubernetes, not the content in kubernetes. The american security agency nsa is infamous for its mass surveillance programs. Open source network security tool for linux nsa releases. Cve20200601 windows 10, windows server 2016, windows server 2019.
Nsas new open source project is a cyber security tool infoworld. For those who are not familiar with nsa s github repository, it was launched this spring by the agency. The national security agency nsa isnt exactly known for its openness, but the organization did release a project on github this year. The only thing that is public is simprelated information, with. Nsas github account has 32 open source projects for public. The only thing that is public is simp related information, with the code being available at.
According to an official launch of open source tool by nsa, simp makes it much easier for government organizations and private departments to patch their network security against cyber threats. National security agency nsa opens github account 24th june 2017 22nd june 2017 by pawan kumar the national security agency nsa is a nationallevel intelligence agency of the united states department of defense, under the authority of the director of national intelligence. Simp is a framework that uses puppet to manage largescale infrastructures. At its core, simp is a collection of custom puppet. Nsa has taken this step to help the government departments and private organizations to improve their security measures. Most security programs for organizations, projects, archive logs. The united states national security agency nsa has released a network security tool for government and the private sectors to help secure their networks against cyber attacks. Still a work in progress, link to my github repo in the article. Simp aims to enhance the network security systems efficiency by keeping them updated and compliant with the latest security standards. The network security tool is for the government and the private sectors to help secure their networks against cyber attacks. Github is an online service designed for sharing code amongst programmers and open source community, and so far, the. Putting aside the numerous allegations, nsa has open.
We support simp, puppet, gitlab, beaker, nifi, and other technologies. Nsa releases open source security tool for linux now that my slashdot user name is also a nsa acronym i probably have to add a disclaimer to each post saying this is just a text message, it is perfectly safe to parse this input. It first appeared in 2015, when the agency open sourced a tool called simp system integrity management platform. Some open source projects for a long time, such as selinux, simp released since 2015, or nifi.
Official organization account for the national security agency nsa national security agency. Jun 19, 2017 nsas github site now contains 32 open source projects for the people, industry, and researchers. Nsa shares 32 open source projects on github techworm. Nsa has opened a github account with 32 projects latest. Nsas github account has 32 open source projects for the. Nsa has taken this step to help the government departments and private organizations. Ida pro must be one of the best reverse engineering tools.
In 2007 the nsa was doing research into creating repeatable, expedited ato processes. Jul 18, 2015 dubbed systems integrity management platform simp, the tool is now publicly available on the popular source code sharing website github. Jul 25, 2017 the usually secretive national security agency now publicly lists 32 of its software projects, giving private developers a chance to make improvements to the code and grow their businesses. Nsas github site now contains 32 open source projects for the people, industry, and researchers. The opensource software is called the system integrity management platform simp. Network security code appears on github simply your tax dollars at work by iain thomson in san francisco 9 jul 2015 at 19. Nsa and github rickrolled using windows cryptoapi bug. Jun 24, 2015 the national security agencys nsas recently established github presence could become a focal point for releasing new technologies into the open source community.
This is a compilation of some excellent open source security projects. A system automation and configuration management stack targeted toward operational flexibility and policy compliance. The nsas systems integrity management platform simp was released to the code repository github over the weekend. May 23, 2019 if you are looking to use the simp materials on an existing system, instructions are available in the simp documentation. Nsa open page 32 of the code released to the public. The nsa technology transfer program ttp works with agency innovators to transfer their technology from the federal laboratory to the commercial marketplace. Nsas open source software releases expected to surge.
Nsa opens github account, lists 32 projects developed by the. The simp project has skeleton repositories to help users get up and running quickly with the expected layout and testing framework for simp artifacts. At its core, simp is a collection of custom puppet modules and ruby script used together to promote security best practice and to enforce. The national security agency nsathe united states intelligence agency which is known for its secrecy and working in the darkhas finally joined github and launched an official github page. The software listed below was developed within the national security agency and is available to the public for use. This transfer of technology not only fosters collaboration and innovation, but it also plays a role in strengthening national security by. The system integrity management platform, simp, is a suite of systems management tools and automated compliance modules.
938 1267 174 1523 1039 1397 220 169 1058 1435 457 216 161 1324 375 1444 358 1061 31 980 1363 599 625 860 521 1556 1319 630 1416 946 267 1419 105 1567 586 653 1571 619 135 498 198 224 393 1044 61 1047 789 258 1315