OpenSCAP : Security Audit2023/07/13 |
Install OpenSCAP which is the security audit and vulnerability scanning tool based on SCAP (Security Content Automation Protocol).
For details about SCAP, refer to the site below.
⇒ https://csrc.nist.gov/projects/security-content-automation-protocol OVAL (Open Vulnerability and Assessment Language) XCCDF (Extensible Configuration Checklist Description Format) OCIL (Open Checklist Interactive Language) CPE (Common Platform Enumeration) CCE (Common Configuration Enumeration) CVE (Common Vulnerabilities and Exposures) CVSS (Common Vulnerability Scoring System) |
|
[1] | Install OpenSCAP command line tool. |
root@dlp:~# apt -y install openscap-scanner openscap-utils bzip2
|
[2] | Download OVAL content which is provided from official site and Scan Debian System with [oscap] command. Scan result is renerated as HTML report, you should verify it and try to improve your Debian System as much as possible. |
root@dlp:~#
wget https://www.debian.org/security/oval/oval-definitions-bookworm.xml.bz2 root@dlp:~# bzip2 -d oval-definitions-bookworm.xml.bz2
# scan system root@dlp:~# oscap oval eval --report oval-bookworm.html oval-definitions-bookworm.xml Definition oval:org.debian:def:123529588390285591596598171393943076746: false Definition oval:org.debian:def:123521536221116140474135614017085794487: false Definition oval:org.debian:def:123515275823866484907522351386084278508: false Definition oval:org.debian:def:123507574783405297533419301717766780766: false Definition oval:org.debian:def:123494576352095029023497767917257164788: false Definition oval:org.debian:def:123480887786336523407021697455856818948: false Definition oval:org.debian:def:123443897497219196496288519200394088403: false ..... ..... Definition oval:org.debian:def:100029339477756930487940238592268642807: false Definition oval:org.debian:def:100025136735225569795784532702130753406: false Definition oval:org.debian:def:100020194192621893181231895146832483613: false Evaluation done.root@dlp:~# ll oval-bookworm.html -rw-r--r-- 1 root root 12417123 Jul 13 00:51 oval-bookworm.html |
Sponsored Link |
|