Hi,
On 7/28/21 11:31 AM, Sohan Kshirsagar wrote:
Hi
I guess the scap-workbench does not allow us to add new rules, but is there
any way I can do it?I guess we can do it by modifying the ds files.
Is there any updated Developers guide on how to make new checks?
Yes, you're correct, scap-workbench can't do that, you would have to
modify the data stream files. But you don't need to modify them
manually. The data stream files are build from sources. The source code
for all the rules is ComplianceAsCode (formerly known as
scap-security-guide) and is located in
https://github.com/ComplianceAsCode/content/ .
You can clone this repository, get inspired by rules existing there,
create a new rule and rebuild the data stream. There is extensive
documentation on https://complianceascode.readthedocs.io/en/latest/
and you can also read
https://2020-summit-labs.gitlab.io/rhel-custom-security-content/.
I'm presently working on RHEL8 and mainly interested in auditing it against
CIS Benchmarks with some additions.
Tere was an implementation of CIS profile for RHEL 8 recently, See
https://github.com/ComplianceAsCode/content/blob/master/products/rhel8/profiles/cis.profile
Thanks for the amazing work you have done!
Regards
Sohan
_______________________________________________
Open-scap-list mailing list
Open-scap-list@redhat.com
https://listman.redhat.com/mailman/listinfo/open-scap-list
Regards
--
Jan Černý
Security Technologies | Red Hat, Inc.
_______________________________________________
Open-scap-list mailing list
Open-scap-list@redhat.com
https://listman.redhat.com/mailman/listinfo/open-scap-list
