Would love some XSLT files for parsing the XML files nicely (I've been
wanting this, but am not an XSLT sorta guy). If the transform included
name, CVE, perhaps RMF controls and result, well, that would be a great
start.
Had not seen wuzah - looks awesome. I don't need the PCI DSS but rather the
RMF low/mod controls, and I use Graylog instead of ELK, but these should be
straightforward issues to resolve. (And if resolved, can contribute the
patches - I love open source!)
=Fen
On Thu, Feb 1, 2018 at 4:01 PM, Luke Salsich <luke.salsich(a)gmail.com> wrote:
...
All of this is to say maybe a first step would be to write some XSLT files
for MariaDB and Postgre and then see where that goes? someone could use
that to then start an API, etc.
I also did want to mention the really great work the people at Wazuh have
done in adding Open-Scap data to their OSSEC fork which then outputs data
into elasticsearch / Kibana dashboards really nicely. I will continue to
use their product gratefully, but as I say - I'm looking for data which I
can query without having to master Lucene to get data out of Elasticsearch.
http://wazuh.com
https://documentation.wazuh.com/current/user-manual/capabilities/policy-
monitoring/openscap/index.html
On Thu, Feb 1, 2018 at 1:20 PM, Fen Labalme <fen.labalme(a)civicactions.com>
wrote:
> ...
> I like
https://osquery.io/ (open source at:
>
https://github.com/facebook/osquery)
>
> Also consider InSpec (
https://github.com/chef/inspec) - though created
> by/for Chef, it's entirely self-contained. OpenSCAP integrating with
> either/both of these would be awesome.
>