All projects

Project

NIST Publication Mapper

An open-source tool that maps NIST SP 800-53 controls across overlays and baselines, links each control to its source paragraphs, and visualizes coverage against CSF 2.0.

NIST 800-53OSCALComplianceTooling
Live Source

What it does

NIST Publication Mapper maps NIST SP 800-53 controls across overlays and baselines (FedRAMP Moderate, Privacy, CUI) and links each control back to its source paragraphs. A coverage heatmap of CSF 2.0 by 800-53 lets a team spot control gaps at a glance.

Why I built it

Auditors and engineers preparing a System Security Plan spend hours cross-referencing control text with overlay baselines and supplemental publications. Existing OSCAL viewers are dense and assume you already know the catalog. This tool makes the catalog navigable and the tailoring explicit.

Highlights

  • Controls indexed by family, with overlay membership shown inline.
  • A CSF 2.0 by 800-53 coverage heatmap that surfaces gaps quickly.
  • Editable parameters, so a security team can render a tailored SSP fragment without leaving the browser.
  • Built on the official NIST OSCAL catalogs as the source of truth.

Stack

Next.js and TypeScript, deployed on Vercel.