On 02/02/2018 03:18 PM, Luke Salsich wrote:
> Hi Simon,
>
> I am surprised that SCAPtimony did not get traction as well.
>
> when you say
>
> "To this day, I am surprised there is no lean and functional microservice
> to store, query and postprocess SCAP results.
> "
>
> What would you sugges
Awesome Fen! Can you provide insight into your usage of Graylog instead of
ELK or EFK?
On Thu, Feb 1, 2018 at 3:37 PM, Fen Labalme
wrote:
> Would love some XSLT files for parsing the XML files nicely (I've been
> wanting this, but am not an XSLT sorta guy). If the transform included
> name, CVE,
Well, that seems exactly like what we're talking about...
Nice work Jerome!
Trevor
On Fri, Feb 2, 2018 at 2:46 AM, Jerome Athias
wrote:
> In case of interest https://github.com/athiasjerome/XORCISM
> Models are SQL representations of CVE, CWE, CAPEC, OVAL, etc.
> Plugins/Connectors exchange in
Hi Simon,
I am surprised that SCAPtimony did not get traction as well.
when you say
"To this day, I am surprised there is no lean and functional microservice
to store, query and postprocess SCAP results.
"
What would you suggest? I ask because it seems like there is a discussion
about a lean
Hello,
As original author of SCAPtimony, I feel urged to come in and say here
is my $0.02 coin.
After spending some time on OpenSCAP development, I started wondering
where all the results of the scans go. I thought there has to be immense
need to make sense of the data organizations have and make
