openscap
openscap copied to clipboard
NIST Certified SCAP 1.2 toolkit
Rationale: Along the lines of parallel scanning, it would be nice to a flag that runs a fast scan, one that ignores any probe that takes longer than a couple...
We have been using free on memory allocated though libxml2, on their linux implementation they use malloc, so its not a big deal, however, on Windows, it can cause crashes...
#### Description of Problem: I installed oscap 1.3.0_alpha2 from the .msi file on GitHub, onto two different Windows 2012 R2 servers. Install completes apparently successfully. However, the resulting installed executable...
For example: https://ci.appveyor.com/project/OpenSCAP/openscap#L429
Rationale: Auditors often need to not install additional software on the audited machine. OpenSCAP currently cannot be statically linked and carried on USB. Deliverable: prepare static build of OpenSCAP (modify...
We have now a header in remediation scripts: ``` 3 # Bash remediation role for profile xccdf_org.ssgproject.content_profile_pci-dss 4 # Profile Title: PCI-DSS v3 Control Baseline for Red Hat Enterprise Linux...
This is a very early and rough patch to update openscap to compose SCAP 1.3 compliant Data Streams. What this PR does for now: - When a `check-content-ref`'s `href` attribute...
This issue was originally posted in https://github.com/ComplianceAsCode/content/issues/3207 from comment: https://github.com/ComplianceAsCode/content/issues/3207#issuecomment-475114583 I'm bringing it here because I believe is related to OpenSCAP and not the content. Original text --------------------------------------------------------------------------------------------- With the...
#### Description of Problem: When we were scripting a report, I left a variable blank by accident. This causes an error error when [--profile] is left blank that is not...
This PR add the auditdline probe following the proposal https://github.com/OVAL-Community/OVAL/issues/114. This implementation can query the live auditd rules, not just the one present in audit.rules file. This implementation is based...