search

Sep0lkit / oval-for-el

OVAL For CentOS
https://github.com/Sep0lkit/oval-for-el
24 stars 12 forks source link
centos-security enterprise-linux linux oval redhat-oval scap security vulnerabilities

readme

OVAL-For-EL

中文 (Chinese version) English (English version)

Features

Supports

OS Release Upstream Status
redhat RHEL5 - RHEL8 https://www.redhat.com/security/data/oval/ syncing
centos EL5 - EL8 https://www.redhat.com/security/data/oval/ syncing

Scripts

​ scripts/rh2el.py 

#usage:
usage: rh2el.py [-h] oval_file output_file

redhat oval definition adapt to centos

positional arguments:
  oval_file    redhat oval file path
  output_file  redhat oval output file path

Files Tree:

├── centos                                      
│   ├── com.redhat.rhsa-EL7-Critical.xml        #oval severity is critical
│   ├── com.redhat.rhsa-EL7-Important.xml       #oval severity is important
│   ├── com.redhat.rhsa-EL7-Low.xml             #oval severity is low
│   ├── com.redhat.rhsa-EL7-Moderate.xml        #oval severity is moderate
│   ├── com.redhat.rhsa-EL7.xml                 #all severity oval on centos7
│   ├── ...
└── redhat                                      
    ├── com.redhat.rhsa-RHEL7-Critical.xml      
    ├── com.redhat.rhsa-RHEL7-Important.xml     
    ├── com.redhat.rhsa-RHEL7-Low.xml           
    ├── com.redhat.rhsa-RHEL7-Moderate.xml      
    ├── com.redhat.rhsa-RHEL7.xml               
    ├── ...

Quick Start

Identify software vulnerabilities on centos 7 with oscap which is a best scap scanner provided by openscap.

Details on ovals above

Redhat:

CentOS:

Resource

Linux OVAL

Getting Help

Twitter: @sep0lkit