scap-workbench
Scanning and tailoring tool for SCAP content
Install
- All systems
-
curl cmd.cat/scap-workbench.sh
- Debian
-
apt-get install scap-workbench - Ubuntu
-
apt-get install scap-workbench - Kali Linux
-
apt-get install scap-workbench - CentOS
-
yum install scap-workbench - Fedora
-
dnf install scap-workbench - Windows (WSL2)
-
sudo apt-get updatesudo apt-get install scap-workbench - Raspbian
-
apt-get install scap-workbench - Dockerfile
- dockerfile.run/scap-workbench
scap-workbench
Scanning and tailoring tool for SCAP content
SCAP is a line of standards managed by NIST with the goal of providing a standard language for the expression of Computer Network Defense related information. The main goal of this application is to lower the initial barrier of using SCAP. Therefore, the scope of very narrow - scap-workbench only scans a single machine and only with XCCDF/SDS (no direct OVAL evaluation). The assumption is that this is enough for users who want to scan a few machines and users with huge amount of machines to scan will just use scap-workbench to test or hand-tune their content before deploying it with more advanced (and harder to use) tools like spacewalk. Feature highlights: * XCCDF 1.1 and 1.2 support * Source Data Stream 1.2 support * XCCDF 1.2 Tailoring file support * Evaluation of local machine * Evaluation of remote machine (using ssh) * Limited tailoring support - selection and unselection * Saving results as XCCDF 1.1 or 1.2 (depending on input) or ARF 1.1