search

clearlinux / kernel-config-checker

Check kernel config files against a set of mandatory-for-security settings
https://pypi.org/project/kcc/
GNU General Public License v3.0
17 stars 7 forks source link

JSON output #5

Closed Wenzel closed 5 years ago

Wenzel commented 5 years ago

Hi,

I would be interested in integrating kcc in a larger project, which aims to analyze the security of operating systems.

I already manage to integrate checksec, since they provide a --json command line option to be parsed on my Python application.

Would it be possible to have that as well, otherwise I can't process your data for hundreds of VMs.

Thanks !

johnandersen777 commented 5 years ago

@Wenzel Do you still want this?

Wenzel commented 5 years ago

@pdxjohnny I closed this issue because I found another project doing more or less the same thing, but it seems more popular, and maybe more likely to be maintained in the future. https://github.com/a13xp0p0v/kconfig-hardened-check

I think we will go with kconfig-hardened-check, otherwise i will reopen this issue. as reference, our project where we want an integration: https://github.com/Wenzel/oswatcher/issues/25

Thank you for the feedback !

fenrus75 commented 5 years ago

as a team that builds an operating system and with a serious security team, we're obviously interested in any tools in this space including obviously ones we did not create... so thanks for the pointers

Wenzel commented 5 years ago

@fenrus75 on our side, we are interested in looking back at the history of operating system, installing all of them and gathering interesting data.

Therefore the integration of security tools, to automatically evaluate the security score of an OS in a virtual machine, and build data visualization to follow the evolution.

We are at early stages now, but the project is growing.

If you are curious, take a look at this repo: https://github.com/Wenzel/oswatcher

fenrus75 commented 5 years ago

I'll stick it in our regression test suite if I can :-)

On Mon, Jun 10, 2019 at 3:07 PM Mathieu Tarral notifications@github.com wrote:

@fenrus75 https://github.com/fenrus75 on our side, we are interested in looking back at the history of operating system, installing all of them and gathering interesting data.

Therefore the integration of security tools, to automatically evaluate the security score of an OS in a virtual machine, and build data visualization to follow the evolution.

We are at early stages now, but the project is growing.

If you are curious, take a look at this repo: https://github.com/Wenzel/oswatcher

— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub https://github.com/clearlinux/kernel-config-checker/issues/5?email_source=notifications&email_token=AAJ54FIO2Z4MNKAMVIWDK43PZ3GDBA5CNFSM4HWTVS7KYY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGODXLL5XY#issuecomment-500612831, or mute the thread https://github.com/notifications/unsubscribe-auth/AAJ54FKUKEFWKJTAWLHFSFTPZ3GDBANCNFSM4HWTVS7A .