Slash Command

/practice-check

Verify specific CMMC practice implementation

Install

npx claudepluginhub abnejllc/grc --plugin cmmc

Prompt Preview

# CMMC Practice Check

Validates implementation of specific CMMC v2.0 practices and provides evidence guidance.

## Arguments

- `$1` - Practice ID (required, e.g., AC.L2-3.1.1, IA.L2-3.5.7)
- `$2` - Check type (optional: implementation, evidence, gaps)

## Practice ID Format

**Structure**: `[DOMAIN].[LEVEL]-[NIST-ID]`

- **Domain**: Two-letter abbreviation (AC, IA, SI, etc.)
- **Level**: L1, L2, or L3
- **NIST ID**: Corresponding NIST 800-171 control number

**Examples**:

- `AC.L1-3.1.1` - Access Control, Level 1, NIST 3.1.1
- `IA.L2-3.5.7` - Identification & Authentication, Level 2, NIS...

Command Content

Other plugins with /practice-check

/practice-check

Verifies CMMC v2.0 practice implementation by ID (e.g., AC.L2-3.1.1), with optional implementation, evidence, or gaps check. Outputs definition, guidance, evidence examples, deficiencies, criteria, and remediation steps.

cmmc

/practice-check

Verify specific CMMC practice implementation

cmmc

Stats

Parent Repo Stars0

Parent Repo Forks0

Last CommitApr 18, 2026

Used By2 plugins

Actions

View Source View Plugin View on GitHub View README

CMMC Practice Check

Validates implementation of specific CMMC v2.0 practices and provides evidence guidance.

Arguments

$1 - Practice ID (required, e.g., AC.L2-3.1.1, IA.L2-3.5.7)
$2 - Check type (optional: implementation, evidence, gaps)

Practice ID Format

Structure: [DOMAIN].[LEVEL]-[NIST-ID]

Domain: Two-letter abbreviation (AC, IA, SI, etc.)
Level: L1, L2, or L3
NIST ID: Corresponding NIST 800-171 control number

Examples:

AC.L1-3.1.1 - Access Control, Level 1, NIST 3.1.1
IA.L2-3.5.7 - Identification & Authentication, Level 2, NIST 3.5.7 (MFA)
AU.L2-3.3.1 - Audit & Accountability, Level 2, NIST 3.3.1 (Audit records)

Check Types

Implementation Check

Validates that the practice is properly implemented:

Technical controls in place
Processes documented
Responsibilities assigned
Operating effectiveness

Evidence Check

Reviews evidence artifacts for C3PAO assessment:

Documentation completeness
Evidence currency (recent)
Artifact authenticity
Coverage of practice requirements

Gap Analysis

Identifies deficiencies in current state:

Missing controls
Partial implementations
Documentation gaps
Remediation priorities

Common Practices

Access Control

AC.L1-3.1.1: Limit system access to authorized users, processes, devices
AC.L1-3.1.2: Limit system access to types of transactions/functions
AC.L2-3.1.20: Verify and control external network connections

Identification & Authentication

IA.L1-3.5.1: Identify information system users
IA.L1-3.5.2: Authenticate (or verify) identities
IA.L2-3.5.7: MFA for network access to privileged accounts
IA.L2-3.5.8: MFA for network access to non-privileged accounts
IA.L2-3.5.10: Store and transmit only cryptographically-protected passwords

Incident Response

IR.L2-3.6.1: Establish incident handling capability
IR.L2-3.6.2: Track, document, and report incidents

System Integrity

SI.L1-3.14.1: Identify, report, and correct information system flaws
SI.L1-3.14.2: Provide protection from malicious code
SI.L2-3.14.4: Update malicious code protection mechanisms

Output

Practice Definition: What the practice requires
Implementation Guidance: How to satisfy the practice
Evidence Examples: What artifacts to provide
- Policies and procedures
- Screenshots/configurations
- Logs and reports
- Test results
Common Deficiencies: What C3PAOs flag
Pass/Fail Criteria: Assessment thresholds
Remediation Steps: If gaps identified

Examples

# Check MFA implementation for Level 2
/cmmc:practice-check IA.L2-3.5.7 implementation

# Review evidence for access control
/cmmc:practice-check AC.L1-3.1.1 evidence

# Gap analysis for incident response
/cmmc:practice-check IR.L2-3.6.1 gaps

# Verify audit logging implementation
/cmmc:practice-check AU.L2-3.3.1