CIS Benchmark Tool: Puppet Puppet Enterprise has the CIS-CAT® Pro Assessor built in, which tests infrastructure configurations against CIS Benchmarks. The Security Compliance Enforcement premium feature automatically remediates security baselines to configurations hardened against CIS Benchmarks. Pairing...
Prowler: AWS CIS Benchmark Tool Table of Contents Description Prowler is a command line tool for AWS Security Best Practices Assessment, Auditing, Hardening and Forensics Readiness Tool. It follows guidelines of the CIS Amazon Web Services Foundations Benchmark (49 checks) and has 40 additional che...
与此同时,CIS还拥有一套完整的网络安全基准,即CIS Controls和CIS Benchmarks。这套基准体系涵盖了网络安全各个方面,包括身份认证、访问控制、数据保护、网络安全等多个方面,旨在帮助企业和机构加强网络安全防护。除此之外,CIS还致力于为用户提供各种网络安全工具和服务。比如,CIS提供的Hardening Guides可...
securityansiblebenchmarkcisredhatansible-rolerhelansible-rolessecurity-hardeningbenchmark-frameworkremediationsecurity-automationsecurity-toolscis-benchmarkcompliance-as-codecompliance-automationrhel8redhat8 UpdatedOct 30, 2024 YAML Simple command line tool to check for compliance against CIS Benchmarks ...
Developed by cybersecurity professionals worldwide, CIS Benchmarks are best practices for securing IT systems, software, networks, and cloud infrastructure.
41 CIS AIX Benchmark 6.3 Find unauthorized world-writable files Action: The automated testing tool supplied with this benchmark will flag unexpected worldwritable files on the system. Administrators who wish to obtain a list of the world-writable files currently installed on the system may run ...
Kube-Bench是一款针对Kubernete的安全检测工具,从本质上来说,Kube-Bench是一个基于Go开发的应用程序,它可以帮助研究人员对部署的Kubernete进行安全检测,安全检测原则遵循CIS Kubernetes Benchmark。 测试规则需要通过YAML文件进行配置,因此我们可以轻松更新该工具的测试规则。
Therancher-cis-benchmarkapp leverageskube-bench,an open-source tool from Aqua Security, to check clusters for CIS Kubernetes Benchmark compliance. Also, to generate a cluster-wide report, the application utilizesSonobuoyfor report aggregation. ...
CIS配置评估工具(Configuration Assessment Tool,CAT)是一种配置评估工具,能将目标系统的配置与推荐的安全配置以机器可读内容的格式进行比较。CIS-CAT工具支持符合安全内容自动化协议(Security Content Automation Protocol,SCAP)格式定义的安全配置内容。 CIS-CAT设计为针对CIS基准(CIS Benchmark)建议配置的主要评估手段。在...
The benchmarks, offered free for CIS members in the form of PDFs, are not directly usable by a scanning tool, but they are human readable. They do offer some benchmarks in an XCCDF1format, that can be used by tools, but they are reserved for paying members. These benchmarks, ...