// Free Community Resources

InfoSecPanda Community Dashboards

Free, read-only framework explorers — built to help the cyber community learn faster and report better.

✓ Read-only ✓ No downloads required ✓ No login required
1,189
SP 800-53 Controls
313
PCI Controls
153
CIS Safeguards
93
ISO 27001 Controls

Available Now

Overview
Subcategory details
800-53 explorer
6
Functions
34
Categories
185
Subcategories
1,189
800-53 Mapped
Controls per function
GV GOVERN
240
ID IDENTIFY
204
PR PROTECT
172
DE DETECT
61
RS RESPOND
112
RC RECOVER
40
Subcategory table
IDFNNAME
GV.OC GV Organizational Context
GV.RM GV Risk Management Strategy
ID.AM ID Asset Management
Live

NIST CSF 2.0 & SP 800-53 Explorer

6 Functions 34 Categories 185 Subcategories 1,189 SP 800-53 Controls
  • Explore NIST CSF 2.0 by function, category, and subcategory with SP 800-53 mappings
  • Read Panda plain-language explanations of what each control really means in practice
  • See evidence examples and implementation guidance for each subcategory
Open NIST CSF Explorer
Req. landscape
Controls explorer
313
Total Controls
12
Requirements
58
Domains
147
High Complexity
Controls per requirement and complexity
Req 1
24
Req 3
36
Req 8
35
Req 10
34
High Low Medium
Live

PCI DSS v4.0.1 Explorer

12 Requirements 58 Domains 313 Controls
  • Navigate PCI DSS v4.0.1 requirements with complexity ratings and domain breakdowns
  • Designed so auditors, engineers, and risk teams can all follow the story
  • Detailed implementation guidance and evidence commentary for each control
Open PCI DSS Explorer
Controls hub
Safeguards
Playbooks
18
Total Controls
153
Safeguards
3
Impl. Groups
18
Playbooks
Implementation groups
IG1 — Basic
IG2 — Foundational
IG3 — Advanced
Controls list
1 Inventory of Enterprise Assets
2 Inventory of Software Assets
3 Data Protection
4 Secure Config of Enterprise Assets
Live

CIS Controls v8 & Playbooks

18 Controls 153 Safeguards 18 Playbooks
  • Explore CIS Controls by Control, Safeguard, and Implementation Group (IG1–IG3)
  • Step-by-step playbooks with tooling examples and definition-of-done checklists
  • Plain-language Panda guidance on why each control matters and how to start
Open CIS Explorer
Controls overview
Controls explorer
By concept
93
Total Controls
4
Themes
20
Critical Priority
75
Preventive
Controls by theme
Organisational
37
People
8
Physical
14
Technological
34
Cybersecurity concepts
Protect70
Identify17
Detect10
Recover7
Respond6
Live

ISO 27001:2022 Annex A Controls

4 Themes 6 Concepts 93 Controls
  • Explore all 93 ISO 27001:2022 Annex A controls across 4 themes with cybersecurity concept mapping
  • Plain-language control intent and evidence examples for each control
  • Implementation tips grounded in real-world security operations
Open ISO 27001 Explorer
// Need More Than Exploration?

Want help implementing what you see here?

Turn framework knowledge into real controls, evidence structures, and executive reporting.

Get in touch!

Readiness Checklist

Track your progress with simple, practical steps.

Control Mapping

Link your controls clearly to framework requirements.

Evidence Expectations

Define what proof is needed for each control.

// What's Coming

Roadmap

Upcoming explorers

01

MiTRE ATT&CK technique explorer Planned

02

SOC 2 Trust Services Criteria explorer Planned

03

NIST SP 800-171 / CMMC explorer Planned

Want one prioritized? Submit a request below.

Request a framework
// Common Questions

Frequently Asked Questions

Is this free?

Yes. These dashboards are free to use as a learning and exploration resource.

How to use these dashboards?

Explore: Find the requirement/subcategory and read the intent. Interpret: Use "Panda explanation" + evidence notes to understand what good looks like. Apply: Use the insights to drive discussions, evidence collection, and reporting.

Can I download the source files?

Not currently. The goal is to provide a live, read-only exploration experience. Source files are not redistributed.

Is this affiliated with any organization?

Not affiliated with any organization or NIST, PCI SSC. Explorers include framework navigation plus InfoSecPanda's own interpretive notes.

Does this show any company's real compliance or maturity?

No. The dashboards focus on framework content only, plus my own explanations. There is no organization-specific posture data.

Can dashboards be customized?

The community dashboards are read-only. For custom dashboards tailored to your framework goals, see our services.