Hello, Regarding missing probes, major contribution to openscap was done during a master thesis (https://www.vutbr.cz/www_base/zav_prace_soubor_verejne.php?file_id=181284).
This document may help to understand openscap structure and how openscap works under the hood. The document also mention briefly how to add new probe for Windows operating system (p35 - 4.6.1) and why there is two wmi test probe (p42 - 4.6.6). There is also the Script Check Engine, which may help using script for running checks: https://www.open-scap.org/features/other-standards/sce/ Regards, Rafael CONTI Principal Engineer - Cybersecurity E rafael.co...@se.com France *Please consider the environment before printing this e-mail -----Message d'origine----- De : Rao, Yarlagadda Srinivasa (MCS) <yarlagadda-srinivasa....@hpe.com> Envoyé : mardi 3 décembre 2019 04:50 À : Rafael CONTI <rafael.co...@se.com>; open-scap-list@redhat.com Objet : RE: Openscap for windows - roadmap [External email: Use caution with links and attachments] ________________________________ Thank you Rafael for sharing the information. Just wanted to understand are there any alternatives available (like calling python OR PowerShell scripts) for the missing probes? Also wanted to know, is there any open source location to download complete oval and xccdf files for windows platform CIS benchmarks? Regards, Vasu -----Original Message----- From: Rafael CONTI [mailto:rafael.co...@se.com] Sent: Monday, December 2, 2019 9:02 PM To: Rao, Yarlagadda Srinivasa (MCS) <yarlagadda-srinivasa....@hpe.com>; open-scap-list@redhat.com Subject: RE: Openscap for windows - roadmap Hello Vasu, I already search for this information, and I am actively following openscap integration for windows. You can check this thread (https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2FOpenSCAP%2Fopenscap%2Fissues%2F1312&data=02%7C01%7Crafael.conti%40se.com%7C408cdc260c344aa297c508d777a3d1a7%7C6e51e1adc54b4b39b5980ffe9ae68fef%7C0%7C1%7C637109417789427953&sdata=hhqyuAI5ZoOY3SK2HJo1kMIncMu9zLQqm%2BimPTaqCqk%3D&reserved=0) which list both links: source code of implemented windows probes : https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2FOpenSCAP%2Fopenscap%2Ftree%2Fmaint-1.3%2Fsrc%2FOVAL%2Fprobes%2Fwindows&data=02%7C01%7Crafael.conti%40se.com%7C408cdc260c344aa297c508d777a3d1a7%7C6e51e1adc54b4b39b5980ffe9ae68fef%7C0%7C1%7C637109417789427953&sdata=yXsyUQrEc5Ikhhe1mPfT0R5xfGAqrWWgaG6LNAXwRP4%3D&reserved=0 specification of all probes for windows : https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2FOVAL-Community%2FOVAL%2Fblob%2Fmaster%2Foval-specifications%2Foval-windows-extension-specification.docx&data=02%7C01%7Crafael.conti%40se.com%7C408cdc260c344aa297c508d777a3d1a7%7C6e51e1adc54b4b39b5980ffe9ae68fef%7C0%7C1%7C637109417789427953&sdata=IikbEHOVvlG5go3YDsQpkbo4WviDueJgf1wan%2FAyJjc%3D&reserved=0 With those document, you can see implemented and missing probes in windows. I did not find information about a roadmap/status for missing probes. I am willing to share information about openscap and windows, Rafael CONTI Principal Engineer - Cybersecurity Energy Management Business Schneider Electric France *Please consider the environment before printing this e-mail De : open-scap-list-boun...@redhat.com <open-scap-list-boun...@redhat.com> De la part de Rao, Yarlagadda Srinivasa (MCS) Envoyé : lundi 2 décembre 2019 16:21 À : open-scap-list@redhat.com Objet : [Open-scap] Openscap for windows - roadmap [External email: Use caution with links and attachments] ________________________________________ Hi, Where can find more information on Openscap for windows. Right now I could find very limited no of oval objects are supported. I am looking for how many oval objects (probes) are completely implemented and how many are in work in progress and not yet implemented for windows. Can someone help me to find out this? Thanks & Regards, Vasu ______________________________________________________________________ This email has been scanned by the Symantec Email Security.cloud service. ______________________________________________________________________ ______________________________________________________________________ This email has been scanned by the Symantec Email Security.cloud service. ______________________________________________________________________ _______________________________________________ Open-scap-list mailing list Open-scap-list@redhat.com https://www.redhat.com/mailman/listinfo/open-scap-list