mpreisler / oscap-ssh Goto Github PK
View Code? Open in Web Editor NEWA small bash script that allows remote oscap scanning through ssh, similar to what SCAP Workbench does.
License: GNU Lesser General Public License v2.1
oscap-ssh's People
Contributors
Stargazers
Watchers
Forkers
gregelin colbize pombredanne sbkg0002 uhl-hosting narbehaj itascode chinmaya021 utkarshdevlab sahar042 shawndwells joelewhiteoscap-ssh's Issues
Error message when oscap not installed on remote machine
This issue is opened to capture current error output of trying to run targeting a remote machine that does not have openscap installed.
No suggestion is being made, just wanted to document what the current code feedback is.
[vagrant@localmachine ~]$ ./oscap-ssh [email protected] 22 xccdf eval --profile xccdf_org.ssgproject.content_profile_common --report report.html /usr/share/xml/scap/ssg/content/ssg-rhel6-ds.xml
Connecting to '[email protected]' on port '22'...
[email protected]'s password:
Connected!
Copying input file '/usr/share/xml/scap/ssg/content/ssg-rhel6-ds.xml' to remote working directory '/tmp/tmp.XQTLnHZrms'...
ssg-rhel6-ds.xml 100% 2808KB 2.7MB/s 00:00
Starting the evaluation...
bash: oscap: command not found
oscap exit code: 127
Copying back requested files...
scp: /tmp/tmp.XQTLnHZrms/report.html: No such file or directory
Failed to copy the HTML report back to local machine!
wanna Public key authentication
hi!
I wanna remote login with Public key authentication.
I want you to implement:)plz
[RFE] oscap-ssh: Add support for 'oscap oval collect' functionality
The oscap tool allows to collect selected OVAL objects from the scanned system in question.
For example suppose the RHEL-6 package aide installed test has the OVAL test definition as:
<linux:rpminfo_test check="all" check_existence="all_exist" id="oval:ssg:tst:302" version="1" comment="package aide is installed">
<linux:object object_ref="oval:ssg:obj:1575"/>
</linux:rpminfo_test>
then it's possible to obtain / collect OVAL system characteristics by running the following command:
oscap oval collect --id oval:ssg:obj:1575 --syschar /tmp/aide_collect.out /usr/share/xml/scap/ssg/content/ssg-rhel6-oval.xml
Collected: "oval:ssg:obj:1575" : complete
Subsequently having look at OVAL details in /tmp/aide_collect.out is a big help for OVAL content developing / debugging purposes (since it provides further OVAL entities as collected for that object / definition for the system in question).
Therefore it would be very helpful, if it would be possible to apply the same command:
oscap-ssh oval collect --id id_of_the_object_to_collect --syschar path_where_to_store_the_report path_to_OVAL_definitions_file.xml
also for the oscap-ssh utility.
Thanks.
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.