[Open-scap] oscap results stored in central database?
Fen Labalme
fen.labalme at civicactions.com
Thu Feb 1 22:37:02 UTC 2018
Would love some XSLT files for parsing the XML files nicely (I've been
wanting this, but am not an XSLT sorta guy). If the transform included
name, CVE, perhaps RMF controls and result, well, that would be a great
start.
Had not seen wuzah - looks awesome. I don't need the PCI DSS but rather the
RMF low/mod controls, and I use Graylog instead of ELK, but these should be
straightforward issues to resolve. (And if resolved, can contribute the
patches - I love open source!)
=Fen
On Thu, Feb 1, 2018 at 4:01 PM, Luke Salsich <luke.salsich at gmail.com> wrote:
> ...
> All of this is to say maybe a first step would be to write some XSLT files
> for MariaDB and Postgre and then see where that goes? someone could use
> that to then start an API, etc.
>
> I also did want to mention the really great work the people at Wazuh have
> done in adding Open-Scap data to their OSSEC fork which then outputs data
> into elasticsearch / Kibana dashboards really nicely. I will continue to
> use their product gratefully, but as I say - I'm looking for data which I
> can query without having to master Lucene to get data out of Elasticsearch.
>
> http://wazuh.com
> https://documentation.wazuh.com/current/user-manual/capabilities/policy-
> monitoring/openscap/index.html
>
>
> On Thu, Feb 1, 2018 at 1:20 PM, Fen Labalme <fen.labalme at civicactions.com>
> wrote:
>
>> ...
>> I like https://osquery.io/ (open source at:
>> https://github.com/facebook/osquery)
>>
>> Also consider InSpec (https://github.com/chef/inspec) - though created
>> by/for Chef, it's entirely self-contained. OpenSCAP integrating with
>> either/both of these would be awesome.
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/open-scap-list/attachments/20180201/3a1f583a/attachment.htm>
More information about the Open-scap-list
mailing list