Whitepapers & Guides
How to Use MITRE SAF
Slick sheet on MITRE SAF's(tm) capabilities in relation to planning, development, assessment, and operations.
DevSecOps Best Practices
Guidance on implementing DevSecOps pipelines with MITRE SAF(tm) tools for continuous security testing and compliance automation.
Executive Summary
High-level overview of MITRE SAF(tm) capabilities and benefits for organizational leadership and decision-makers.
The New Normalized OHDF
Technical overview of the OASIS Heimdall Data Format (OHDF) and how it enables unified security data analysis.
Conference Talks & Webinars
SCAP vs InSpec Comparison
Side-by-side comparison of SCAP and InSpec for compliance automation, covering strengths, limitations, and use cases.
Vulcan Webinar
Introduction to Vulcan, the SAF security guidance authoring platform for creating and managing security baselines.
Container Security Best Practices
Presentation on container security testing and hardening best practices using MITRE SAF tools and InSpec.