Generate Mapping

The generate_mapping.py script creates custom rules and baselines for compliance frameworks not included in the project. You provide a CSV that maps your framework’s controls to a supported framework (like NIST 800-53r5).

Tip

Use this when you need to align your organization’s controls with frameworks the project doesn’t directly support.

Always Use the Correct Branch (mSCP 1.0)

Each macOS version has its own branch (sequoia, sonoma, ventura, etc.). Never use the main branch — it won’t work for generating content.

mSCP 2.0 (currently in beta) will remove the per-branch requirement and introduce easier installation methods.

---

CSV Format

Create a CSV with two columns:

Column	Description
Column 1	Your framework’s control identifier
Column 2	Corresponding controls from a supported framework

The first row should contain the framework names:

800-171r2,800-53r5
3.1.1,"AC-2, AC-3, AC-17"
3.1.2,"AC-2, AC-3, AC-17"
3.1.3,AC-4
3.1.4,AC-5

---

Generate Custom Mapping

1. Run the mapping script

   ./scripts/generate_mapping.py PATH_TO_CSV

   Example:

   ./scripts/generate_mapping.py ~/Desktop/171-to-53.csv

2. Find your files

   Output	Location
   Custom rule files	build/800-171r2/rules/
   Generated baseline	build/baselines/800-171r2.yaml

---

Command Reference

Flag	Description
-f FRAMEWORK	Source framework to map from (default: 800-53r5)

Example mapping to CIS Controls:

./scripts/generate_mapping.py ~/Desktop/cis-mapping.csv -f "cis/controls v8"

Note

The -f value must match a column header in your CSV.

---

Next Steps

• Tailoring a Baseline - Customize the generated baseline
• How to Generate Guidance - Generate documentation from your baseline