# Nabla Docs ## Docs - [System Architecture](https://docs.usenabla.com/api-reference/architecture.md): Overview of the Evidence API system architecture and data flow - [Analyze Azure environment for compliance (live)](https://docs.usenabla.com/api-reference/evidence/analyze-azure-environment-for-compliance-live.md): Generate NIST 800-53 compliance assessment from live Azure environment using Workload Identity Federation. Requires Fabric plan. - [Analyze Terraform state for compliance](https://docs.usenabla.com/api-reference/evidence/analyze-terraform-state-for-compliance.md): Generate NIST 800-53 compliance assessment from Terraform state file with optional architecture diagram - [Generate FIPS cryptographic assessment from ZIP bundle](https://docs.usenabla.com/api-reference/fips/generate-fips-cryptographic-assessment-from-zip-bundle.md): Upload a ZIP archive containing multiple evidence sources (SBOMs, Terraform state, Kubernetes manifests, Ansible playbooks, package locks, system info) and generate FIPS 140-2/140-3 cryptographic compliance assessment. Detects cryptographic libraries, validates FIPS compliance, and checks for weak a… - [Analyze firmware binary for security](https://docs.usenabla.com/api-reference/firmware/analyze-firmware-binary-for-security.md): Perform security analysis on firmware/binary files. Detects format, identifies security features (NX, ASLR, stack canaries, CFI), extracts strings, generates control flow graphs, and maps findings to NIST SP 800-193. - [API Reference](https://docs.usenabla.com/api-reference/introduction.md): Nabla Evidence Engine API - GRC evidence orchestration and compliance assessment - [NIST 800-171 Rev 3](https://docs.usenabla.com/api-reference/schemas/800-171.md): Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations - [NIST 800-172](https://docs.usenabla.com/api-reference/schemas/800-172.md): Enhanced Security Requirements for Protecting Controlled Unclassified Information - [NIST 800-53 Rev 5](https://docs.usenabla.com/api-reference/schemas/800-53.md): Security and Privacy Controls for Information Systems and Organizations - [FIPS 140-3](https://docs.usenabla.com/api-reference/schemas/fips-140-3.md): Security Requirements for Cryptographic Modules - [CMMC Assessments](https://docs.usenabla.com/examples/cmmc-assessment.md): Generate CMMC 2.0 compliance evidence from infrastructure - [Architecture Boundary Diagrams](https://docs.usenabla.com/examples/diagram-generation.md): Generate Mermaid diagrams from Terraform state using AI - [FedRamp Assessments](https://docs.usenabla.com/examples/fedramp-assessment.md): Generate FedRAMP compliance evidence from Terraform state - [FIPS 140-3 Assessments](https://docs.usenabla.com/examples/fips-assessment.md): Validate FIPS 140-3 compliance from infrastructure evidence - [Introduction](https://docs.usenabla.com/index.md): Automated compliance evidence generation from infrastructure-as-code - [Quickstart](https://docs.usenabla.com/quickstart.md): Get started with Nabla's compliance automation API in minutes ## OpenAPI Specs - [openapi](https://docs.usenabla.com/api-reference/openapi.json) ## Optional - [Homepage](https://www.usenabla.com) - [Get an API Key](https://cal.com/team/nabla/nabla-pilot-interest-call)