search

mitre / saf

The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools developed by MITRE and the security community to streamline security automation for systems and DevOps pipelines
https://saf-cli.mitre.org
Other
131 stars 37 forks source link

create an ARF to HDF mapper #122

Open sophos-billm opened 2 years ago

sophos-billm commented 2 years ago

From a SCAP compatibility perspective, the standard output from tools could potentially use the Asset Reporting Format (ARF). A mapper, somewhat similar to the XCCDF-to-HDF mapper, would be useful.

Some caveats/information:

I'm sure I'm forgetting something, but hopefully this will start the conversation.

aaronlippold commented 2 years ago

Agreed, we will likely go in both directions, hdf2arf as well.

https://csrc.nist.gov/schema/asset-reporting-format/1.1/asset-reporting-format_1.1.0.xsd

aaronlippold commented 2 years ago

https://csrc.nist.gov/Projects/Security-Content-Automation-Protocol/Specifications/arf

sophos-ryan commented 2 years ago

Upvote

rathbunr commented 3 months ago

Old open issue, any traction? Was looking to do this recently.