mpreisler / oscap-ssh Goto Github PK
View Code? Open in Web Editor NEWA small bash script that allows remote oscap scanning through ssh, similar to what SCAP Workbench does.
License: GNU Lesser General Public License v2.1
A small bash script that allows remote oscap scanning through ssh, similar to what SCAP Workbench does.
License: GNU Lesser General Public License v2.1
This issue is opened to capture current error output of trying to run targeting a remote machine that does not have openscap installed.
No suggestion is being made, just wanted to document what the current code feedback is.
[vagrant@localmachine ~]$ ./oscap-ssh [email protected] 22 xccdf eval --profile xccdf_org.ssgproject.content_profile_common --report report.html /usr/share/xml/scap/ssg/content/ssg-rhel6-ds.xml
Connecting to '[email protected]' on port '22'...
[email protected]'s password:
Connected!
Copying input file '/usr/share/xml/scap/ssg/content/ssg-rhel6-ds.xml' to remote working directory '/tmp/tmp.XQTLnHZrms'...
ssg-rhel6-ds.xml 100% 2808KB 2.7MB/s 00:00
Starting the evaluation...
bash: oscap: command not found
oscap exit code: 127
Copying back requested files...
scp: /tmp/tmp.XQTLnHZrms/report.html: No such file or directory
Failed to copy the HTML report back to local machine!
hi!
I wanna remote login with Public key authentication.
I want you to implement:)plz
The oscap
tool allows to collect selected OVAL objects from the scanned system in question.
For example suppose the RHEL-6 package aide installed
test has the OVAL test definition as:
<linux:rpminfo_test check="all" check_existence="all_exist" id="oval:ssg:tst:302" version="1" comment="package aide is installed">
<linux:object object_ref="oval:ssg:obj:1575"/>
</linux:rpminfo_test>
then it's possible to obtain / collect OVAL system characteristics by running the following command:
oscap oval collect --id oval:ssg:obj:1575 --syschar /tmp/aide_collect.out /usr/share/xml/scap/ssg/content/ssg-rhel6-oval.xml
Collected: "oval:ssg:obj:1575" : complete
Subsequently having look at OVAL details in /tmp/aide_collect.out
is a big help for OVAL content developing / debugging purposes (since it provides further OVAL entities as collected for that object / definition for the system in question).
Therefore it would be very helpful, if it would be possible to apply the same command:
oscap-ssh oval collect --id id_of_the_object_to_collect --syschar path_where_to_store_the_report path_to_OVAL_definitions_file.xml
also for the oscap-ssh
utility.
Thanks.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.