scap

There are 4 repositories under scap topic.

ComplianceAsCode / content
Security automation content in SCAP, Bash, Ansible, and other formats
ansible application-security cce compliance cpe cybersecurity hardening information-security ospp oval pci-dss scap security security-automation security-hardening security-profile security-tools stig usgcb xccdf
Language:Shell 2562
OpenSCAP / openscap
NIST Certified SCAP 1.2 toolkit
scap xccdf oval cpe compliance openscap scanning data-stream
Language:XSLT 1597
toolswatch / vFeed
The Correlated CVE Vulnerability And Threat Intelligence Database API
cve oval threat-intelligence-database python vfeed cwe capec scap vulnerability-databases vulnerability-detection vulnerability-database-entry vulnerability-identification threat intelligence-gathering exploits vulnerability vulnerability-scanners common-vulnerability-exposure threat-intelligence threatintel
Language:Python 944
OpenSCAP / scap-workbench
SCAP Scanner And Tailoring Graphical User Interface
scap gui scanning xccdf c-plus-plus scap-workbench
Language:C++ 234
vfeedio / pyvfeed
Python API for vFeed Vulnerability & Threat Intelligence Database Enterprise & Pro Editions
cve threat-database python-api threat-intelligence vulnerability-databases vulnerability-management capec cwe oval scap vulnerability-scanners exploits
Language:Python 102
OVAL-Community / OVAL
Official repository for the Open Vulnerability and Assessment Language
automation oval scap security xml
Language:XSLT 79
easy-admin
egberts / easy-admin
Scripts for easy system administration
administration auto-configuration chrony chronyd unix-shell bash-script admin-security oscap scap cisecurity ntp-server ntp-client ntp ntpdate
Language:Shell 42
OpenSCAP / oval-graph
Understand OVAL results in a blink of an eye
oval xcddf scap oval-reports arf openscap xml security-tools security graph visualization hacktoberfest
Language:Python 35
CyberSecDef / scans2reports
An ACAS/SCAP/CKL scan parser and report generator
acas scap ckl stig rmf poam
Language:Python 25
Sep0lkit / oval-for-el
OVAL For CentOS
security oval linux scap enterprise-linux redhat-oval vulnerabilities centos-security
Language:Python 25
emo-crab / scap-rs
National Vulnerability Database (NVD) implemented by rust
cpe cve cvss nvd rust cwe cvssv3 cvssv4 actix-web yew scap exploit nuclei-templates
Language:Rust 22
plus3it / ash-linux-formula
Automated System Hardening (ash-linux) is a Salt formula to apply SCAP benchmarks to Linux systems
saltstack enterprise-linux stig scap linux salt remediation el6 el7
Language:SaltStack 19
PowerShellCrack / STIGSCAPWinTool
Applies DISA STIGS GPO Policy's offline
scap stig disa powershell gpo cci dsc
Language:PowerShell 19
svetlyobg / Hardening
This GitHub repository focuses on enhancing the security posture of Windows systems by implementing rigorous hardening measures aligned with the guidelines provided by the Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs) and the Center for Internet Security (CIS) Benchmarks.
cis-benchmark disa hardening nist stigs windows windows-10 windows-desktop batch cmd pwoershell wazuh scap compliance cybersecurity security
Language:PowerShell 9
greenbone / greenbone-scap
Python library for CVE and CPE Infomation
cpe cve greenbone nist nvd openvas python scap
Language:Python 5
kaosagnt / useful-utilities
Useful Un*x / BSD / macOS utilities
bsd linux macos tls ssh ocsp memcached scap openscap oval static-analysis docker security security-audit security-tools ssl cybersecurity kali-linux vulnerability-scanners ntfs-3g
Language:Shell 5
GoComply / containers
containers
fedramp metaschema opencontrols oscal rolie scap
Language:Dockerfile 4
netinvent / el_scripts
Linux Security hardening Scripts for Enterprise Linux Redhat (RHEL) & Clones (AlmaLinux, RockyLinux) / Debian
hardening kickstart scap security almalinux debian rhel rockylinux
Language:Shell 3
tum-i4 / CIS-Benchmark-Evaluation
This repository is part of the paper Automated Implementation of Windows-related Security-Configuration Guides presented at the 35th IEEE/ACM International Conference on Automated Software Engineering.
benchmark security configuration-management scap scapolite
Language:HTML 3
wh330 / GVM-Deployment
Dockerised Greenbone Vulnerability Management components
gvm security openvas k8s docker docker-compose helm chart vulnerability vulnerability-scanners gsa images gvm-cli gvm-openvas-docker scap remote scanner socker tcp
Language:Dockerfile 3
allamiro / rSCAP
rSCAP is a standardized compliance checking solution and auditing script used with Redhat based Linux systems.
scap nist linux-compliance linux-auditing vulnerability-assessment
Language:PowerShell 2
Anthonyhudnall92 / scap-prometheus-monitoring
Complete SCAP-to-Prometheus monitoring system with Docker, Grafana dashboards, and automated compliance tracking
automation compliance devops docker grafana monitoring openscap prometheus scap security
Language:Python 2
greenbone / greenbone-scap-api
REST API build on top of greenbone-scap
api cpe cve fastapi greenbone nist nvd openvas python rest scap vulnerabilities
Language:Python 2
mathieubrd / ami-factory
A pipeline that creates hardened AWS AMIs based on compliance rules and remediation scripts.
compliance-as-code scap aws devops ami codebuild ami-factory
Language:HCL 2
tum-i4 / Automated-Identification-of-Security-Relevant-Configuration-Settings-Using-NLP
This repository is part of the paper "Automated Identification of Security-Relevant Configuration Settings Using NLP" accepted at the Industry Showcase track at the 37th IEEE/ACM International Conference on Automated Software Engineering (ASE). https://conf.researchr.org/track/ase-2022/ase-2022-industry-showcase.
bert hardening nlp scap scapolite security configuration-management
Language:Jupyter Notebook 2
tum-i4 / Better-Safe-Than-Sorry
This repository is part of the paper "Better Safe Than Sorry! Automated Identification of Breaking Security-Configuration Rules" accepted at the "4th ACM/IEEE International Conference on Automation of Software Test (AST)". https://conf.researchr.org/home/ast-2023
combinatorial-testing scap configuration-management security scapolite hardening
Language:Python 2
tum-i4 / disa-windows-server-2016
This repository is part of the paper Automated Implementation of Windows-related Security-Configuration Guides presented at the 35th IEEE/ACM International Conference on Automated Software Engineering.
security benchmark scap scapolite configuration-management
2
BU-CS-CE-528-2017 / Scanning-Containers
Compliance and Vulnerability scanning tool for containers
containers docker openstack python scap
Language:Python 1
egberts / dpkg-diffs
Compare the filesystem tree of a Debian package to the current filesystem tree, printing unified diffs for files that differ
dpkg dpkg-diff dpkg-verify oscap scap debian-packages debian-packaging apt-verify apt-diff
Language:Shell 1
gmirsky / oscap_oval_reporting
OSCAP/OVAL reporting
security security-tools stig stig-compliant oval scap shell-script centos7 xccdf oval-reports
Language:Shell 1
pvcasillasg / OpenScap_Ansible
Ansible playbook, based on roles for fully automated execution of Oscap commands, includes installation, copy of tailored files, generate remedies, execute remedies, and fetch reports
ansible ansible-playbook ansible-role elasticsearch logstash openscap scap security
1
scapolite / example_cis_google_chrome_v2_0
Example import and data enrichment of CIS Security Benchmark for Google Chrome (v2.0) into Scapolite
scap scapolite configuration-management security hardening benchmark
1
scapolite / scapolite_docs
scap scapolite hardening configuration-management
1
slange-dev / evaluate-scap
Evaluate-scap is a script that evaluates the SCAP profile rules from the scap-security-guide on your linux machine.
hardening linux oscap scap security-scan security-scanner
Language:Shell 1
tum-i4 / CODASPY2022
This repository is part of the paper "Hardening with Scapolite: a DevOps-based Approach for Improved Authoring and Testing of Security-Configuration Guides in Large-Scale Organizations" presented at the 12th ACM Conference on Data and Application Security and Privacy (CODASPY). http://www.codaspy.org/2022/
configuration-management scap security hardening scapolite
1
tum-i4 / disa-windows-server-2019
This repository is part of the paper Automated Implementation of Windows-related Security-Configuration Guides presented at the 35th IEEE/ACM International Conference on Automated Software Engineering.
scap scapolite configuration-management security
1

scap

ComplianceAsCode / content

OpenSCAP / openscap

toolswatch / vFeed

OpenSCAP / scap-workbench

vfeedio / pyvfeed

OVAL-Community / OVAL

egberts / easy-admin

OpenSCAP / oval-graph

CyberSecDef / scans2reports

Sep0lkit / oval-for-el

emo-crab / scap-rs

plus3it / ash-linux-formula

PowerShellCrack / STIGSCAPWinTool

svetlyobg / Hardening

greenbone / greenbone-scap

kaosagnt / useful-utilities

GoComply / containers

netinvent / el_scripts

tum-i4 / CIS-Benchmark-Evaluation

wh330 / GVM-Deployment

allamiro / rSCAP

Anthonyhudnall92 / scap-prometheus-monitoring

greenbone / greenbone-scap-api

mathieubrd / ami-factory

tum-i4 / Automated-Identification-of-Security-Relevant-Configuration-Settings-Using-NLP

tum-i4 / Better-Safe-Than-Sorry

tum-i4 / disa-windows-server-2016

BU-CS-CE-528-2017 / Scanning-Containers

egberts / dpkg-diffs

gmirsky / oscap_oval_reporting

pvcasillasg / OpenScap_Ansible

scapolite / example_cis_google_chrome_v2_0

scapolite / scapolite_docs

slange-dev / evaluate-scap

tum-i4 / CODASPY2022

tum-i4 / disa-windows-server-2019