-
Hi, I'm trying to create an integration system between Wazuh and an Incident Handling tool (like for example [TheHive](https://github.com/TheHive-Project/)).
I would like to keep the implementation t…
-
We have a lot of combinations to test, consider these axes:
* profile (15-ish)
* hardening technologies, oscap/ansible/imagebuilder/anaconda (4)
* without / with-gui (2)
* bios / uefi (2) - #19
*…
comps updated
8 months ago
-
#### Description of problem:
It's possible that this is just https://github.com/ComplianceAsCode/content/issues/11359 applied to `execstack`.
Essentially, the rule remediates with
```
Remediatin…
comps updated
6 months ago
-
https://github.com/OpenSCAP/scap-workbench/wiki/Windows-build-and-installer-guide
Section 4. Get ssh.exe & win-ssh-askpass.exe says:
Do not get anything else from the old MSI, everything else must…
-
#### Description of problem:
no_shelllogin_for_systemaccounts is misaligned with DISA
#### Details:
Needs broader investigation. At the first sight it seems that the SSG check is more complex and…
-
Create RPM installs for RHEL, CentOS, Fedora, AWS Linux, and if we can Ubuntu. Understand the process for maintaining the install. Maybe create RPMs audit files, too?
-
We use the Anaconda OSCAP plugin for hardening our Rocky 9 systems. We recently took Rocky 9.2 for a spin and ran into some issues.
How we have it implemented in our kickstart:
```
%pre --inter…
-
#### Description of problem:
Apply to the rule `sshd_disable_gssapi_auth` (And may likely also concern other `sshd_*` rules checking `/etc/ssh/sshd_config`)
This rule check that `GSSAPIAuthentic…
-
## Detailed Description
Currently, to scan a docker image, container for that image must be running.
For example, to scan `alpine:latest`:
```sh
export CT=alpine:latest
CID=$(podman run -…
-
#### Description of problem:
The rule `root_permissions_syslibrary_files` uses template `file_groupowner`. During automatus.py rule-based test, the template failed the missing_file_test.pass at ini…