Cross-walk releases · 10 June 2026
Our two-way framework cross-walks
Each release is a bidirectional mapping we authored between two security frameworks, with reliability and abstraction measures and downloadable raw data. Where an authoritative one-way mapping exists, we show where ours diverges. See how the chips work and the cross-walk illusion.
| Release | Pairs | Authoritative? | Reverse-presence | Abstraction |
|---|---|---|---|---|
| NIST CSF 2.0 ↔ NIST 800-53 r5 | 937 | yes | 78.2% | NIST_CSF_2.0 broader |
| OWASP Top 10 Web 2025 ↔ CWE | 258 | yes | 79.8% | OWASP_Web_Top10_2025 broader |
| NIST 800-53 r5 ↔ OWASP ASVS 5.0 | 627 | — | 74.4% | NIST_800-53_r5 broader |
| CWE ↔ OWASP ASVS 5.0 | 672 | — | 99.7% | OWASP_ASVS_5.0 broader |
| CWE ↔ NIST CSF 2.0 | 145 | — | 96.7% | CWE broader |
| NIST 800-53 r5 ↔ OWASP Top 10 Web 2025 | 41 | — | 77.5% | OWASP_Web_Top10_2025 broader |
| CWE ↔ MITRE ATT&CK | 359 | yes | 81.7% | CWE broader |
| CAPEC ↔ CWE | 1039 | yes | 89.2% | CWE broader |