Free InfoSec Tools

Worksheets I use with clients for audits, vendor reviews, and continuity planning. Fill in, score, export PDF.

ISO 27001:2022

ISO 27001 Gap Analysis

Score ISMS clauses and Annex A against ISO 27001:2022. Export a gap PDF before audit or management review.

Open tool
NIS2 Directive

NIS2 Readiness Assessment

Quick NIS2 readiness score across 9 domains. Incident reporting, supply chain, governance. PDF in ~15 minutes.

Open tool
NIST SP 800-207

Zero Trust Architecture Workshop

Run a NIST SP 800-207 workshop across 7 pillars. Score maturity, capture notes, export a PDF roadmap. No vendor checklist.

Open tool
OWASP + EU AI Act

AI Governance Self-Assessment

OWASP LLM checklist plus EU AI Act prompts. Tick what you have, list AI systems, download a PDF for legal/tech sync.

Open tool
OWASP ASI Top 10

Agentic AI Security Assessment

OWASP ASI01-ASI10 scorecard plus adoption tier AT0-AT8. For agents that use tools, memory, and multi-agent workflows.

Open tool
ISO 22317:2021

Business Impact Analysis

Rank processes by impact, set RTO/RPO targets. ISO 22317-style BIA worksheet with PDF output.

Open tool
GDPR Art. 35

DPIA Calculator

GDPR Art. 35 screening: do you need a DPIA? Score risks, note mitigations, export for the DPO file.

Open tool
OWASP

OWASP Risk Calculator

OWASP risk rating in the browser. Stack likelihood and impact factors, compare risks, PDF for dev triage.

Open tool
ISO 27036

Supplier Risk Assessment

Score vendors on ISO 27036-style criteria. Compare suppliers side by side, PDF for procurement sign-off.

Open tool