NIST / CISA Aligned

Ethical Hacking Audit Builder

A complete, integrated audit skill set covering the full lifecycle from network scanning through risk reporting. Six skills. One unified pipeline. Full NIST framework alignment.

Explore Skills View Demo Results

6 Integrated Skills NIST SP 800-115 NIST CSF 2.0 CIS Benchmarks

Total Risks Found

Critical Findings

High Findings

Config Checks Run

80.6%

IR Maturity

55%

Policy Coverage

Skill Set

Six Integrated Audit Skills

Each skill covers a distinct phase of the audit lifecycle, aligned with specific NIST frameworks and producing structured, importable outputs.

NIST SP 800-115

Network Vulnerability Scanner

Network scanning, port enumeration, service fingerprinting, and vulnerability identification with CVE mapping. Produces structured JSON and Markdown reports.

Key ControlsRA-5, CA-8, SI-2

CSF FunctionsIdentify, Detect

View Documentation

CIS Benchmarks

Security Configuration Auditor

OS and network configuration checks against CIS Benchmarks. Covers password policy, SSH hardening, filesystem, network, logging, services, and permissions.

Key ControlsCM-6, CM-7, SC-7, AC-3

Structured pen-test workflow with finding tracking, CVSS scoring, and OWASP Top 10 coverage. Full lifecycle from scoping through reporting.

Key ControlsCA-8, RA-5, SI-10

CSF FunctionsIdentify, Respond

View Documentation

NIST CSF 2.0

Policy & Governance Auditor

Policy and governance document review against NIST CSF 2.0 and 800-53. Identifies control gaps, assesses document quality, and produces compliance reports.

Key ControlsPM-1, PL-1, PL-2, AT-1

CSF FunctionsGovern, Protect

View Documentation

NIST SP 800-61 Rev 3

Incident Response Auditor

IR plan maturity assessment and gap analysis across all four NIST 800-61 phases plus CISA-specific requirements. Produces readiness checklists.

Key ControlsIR-1 through IR-8

CSF FunctionsDetect, Respond, Recover

View Documentation

NIST SP 800-37 (RMF)

Risk Assessment & Reporting

Risk scoring, register management, and NIST RMF reporting. Imports findings from all other skills and generates consolidated risk assessments with POA&M.

Key ControlsRA-3, PM-9, CA-5

CSF FunctionsIdentify, Govern

View Documentation

Integration Pipeline

Unified Data Flow

All skills integrate through structured JSON output. Findings from every audit phase flow into the central Risk Assessment engine for consolidated scoring and reporting.

Network Vuln ScannerRisk Assessmentimport-findings

Penetration TestingRisk Assessmentimport-findings

Config AuditorRisk Assessmentadd-risk

Policy AuditorRisk Assessmentadd-risk

IR AuditorRisk Assessmentadd-risk

Live Demo Results

Audit Findings Dashboard

Real results from running all six skills against a simulated environment. Each tab shows the output from a different audit phase.

Port Scan Results — 127.0.0.1

NIST 800-115

Port	Proto	State	Service	Version
22	tcp	open	ssh	OpenSSH 8.9p1
5900	tcp	open	vnc	VNC
5901	tcp	open	http	Golang net/http
8333	tcp	open	bitcoin

HIGH: VNC Port 5900 Exposed

Risky port open and externally accessible. Use VPN and strong authentication. NIST SC-7.

Scan Summary

Hosts Discovered1

Open Ports4

Vulnerabilities1

OS DetectionLinux 2.6.32 (96%)

Consolidated Risk Register

11 Risks Identified

All findings from the six audit skills consolidated into a single, prioritized risk register scored using the NIST 5x5 risk matrix.

RISK-002SQL Injection in Login FormCRITICAL25Pen Test

RISK-005Default Admin CredentialsCRITICAL25Pen Test

RISK-001VNC Port Exposed (5900)HIGH16Net Scan

RISK-003XSS in SearchHIGH16Pen Test

RISK-004Outdated TLS 1.0HIGH16Pen Test

RISK-007Weak Password PolicyHIGH16Config Audit

RISK-008SSH Root Login EnabledHIGH15Config Audit

RISK-009Missing 9 NIST Control FamiliesHIGH15Policy Audit

RISK-010IR Plan Missing Supply Chain ProceduresHIGH12IR Audit

RISK-006Missing HTTP Security HeadersMEDIUM9Pen Test

RISK-011ICMP Redirects AcceptedMEDIUM6Config Audit

Risk Scoring Guide

20-25CRITICALImmediate mitigation

12-19HIGH30-day mitigation plan

6-11MEDIUM90-day plan

1-5LOWAccept or next cycle

8-Phase Playbook

Audit Execution Workflow

Follow the structured 8-phase playbook for a complete, repeatable ethical hacking audit.

Scope & Authorization

Define scope, obtain written authorization, set ROE

Manual

Network Scanning

Run network-vuln-scanner against target subnets

network-vuln-scanner

Config Auditing

Run security-config-auditor on all in-scope systems

security-config-auditor

Penetration Testing

Execute penetration-testing workflow per NIST 800-115

penetration-testing

Policy Review

Audit governance docs with policy-governance-auditor

policy-governance-auditor

IR Readiness

Assess IR plan with incident-response-auditor

incident-response-auditor

Risk Assessment

Import all findings, score and prioritize

risk-assessment-reporting

Deliverables

Compile reports, risk register, and POA&M

All Skills

Framework Alignment

NIST & CISA Compliance Mapping

Every skill maps directly to established cybersecurity frameworks, ensuring audit results are defensible and compliance-ready.

Skill	Primary Framework	Secondary	Key Controls	CSF Functions
Net Scan	NIST SP 800-115	NIST 800-53 (RA, CA)	RA-5, CA-8, SI-2	IdentifyDetect
Config Audit	CIS Benchmarks	NIST 800-53 (CM, SC, AC)	CM-6, CM-7, SC-7, AC-3	Protect
Pen Test	NIST SP 800-115	OWASP Top 10, CISA KEV	CA-8, RA-5, SI-10	IdentifyRespond
Policy Audit	NIST CSF 2.0	NIST 800-53 (All families)	PM-1, PL-1, PL-2, AT-1	GovernProtect
IR Audit	NIST SP 800-61 Rev 3	CISA IR Guidelines	IR-1 through IR-8	DetectRespondRecover
Risk Report	NIST SP 800-37 (RMF)	NIST 800-30, FIPS 199	RA-3, PM-9, CA-5	IdentifyGovern