There are 3 repositories under scap topic.
Security automation content in SCAP, Bash, Ansible, and other formats
The Correlated CVE Vulnerability And Threat Intelligence Database API
SCAP Scanner And Tailoring Graphical User Interface
Understand OVAL results in a blink of an eye
Scripts for easy system administration
OVAL For CentOS
Applies DISA STIGS GPO Policy's offline
Automated System Hardening (ash-linux) is a Salt formula to apply SCAP benchmarks to Linux systems
Python package for handling Security Content Automation Protocol.
Useful Un*x / BSD / macOS utilities
This GitHub repository focuses on enhancing the security posture of Windows systems by implementing rigorous hardening measures aligned with the guidelines provided by the Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs) and the Center for Internet Security (CIS) Benchmarks.
This repository is part of the paper Automated Implementation of Windows-related Security-Configuration Guides presented at the 35th IEEE/ACM International Conference on Automated Software Engineering.
Dockerised Greenbone Vulnerability Management components
A pipeline that creates hardened AWS AMIs based on compliance rules and remediation scripts.
This repository is part of the paper Automated Implementation of Windows-related Security-Configuration Guides presented at the 35th IEEE/ACM International Conference on Automated Software Engineering.
Compliance and Vulnerability scanning tool for containers
Compare the filesystem tree of a Debian package to the current filesystem tree, printing unified diffs for files that differ
OSCAP/OVAL reporting
This repository is part of the paper "Automated Identification of Security-Relevant Configuration Settings Using NLP" accepted at the Industry Showcase track at the 37th IEEE/ACM International Conference on Automated Software Engineering (ASE). https://conf.researchr.org/track/ase-2022/ase-2022-industry-showcase.
This repository is part of the paper "Better Safe Than Sorry! Automated Identification of Breaking Security-Configuration Rules" accepted at the "4th ACM/IEEE International Conference on Automation of Software Test (AST)". https://conf.researchr.org/home/ast-2023
This repository is part of the paper "Hardening with Scapolite: a DevOps-based Approach for Improved Authoring and Testing of Security-Configuration Guides in Large-Scale Organizations" presented at the 12th ACM Conference on Data and Application Security and Privacy (CODASPY). http://www.codaspy.org/2022/
This repository is part of the paper Automated Implementation of Windows-related Security-Configuration Guides presented at the 35th IEEE/ACM International Conference on Automated Software Engineering.
Example import and data enrichment of CIS Security Benchmark for Google Chrome (v2.0) into Scapolite
Example import and data enrichment of IASE Windows Server 2016 STIG v1r7 into Scapolite
SCAP OVAL Definition for SUSE Linux Enterprise Server 11
ResumeRevealer is an advanced tool designed for HR professionals, recruiters, and hiring managers to streamline the process of resume parsing and candidate evaluation. It offers a comprehensive solution to extract valuable insights from diverse resume formats, standardize job titles, and mine detailed skills from project descriptions.