Hi Charles, You can perform audits using CIS Benchmarks by integrating with CIS-CAT. I will leave here a link <https://documentation.wazuh.com/current/user-manual/capabilities/policy-monitoring/ciscat/ciscat.html> with some information about it. Remember that you require CIS-CAT Pro licence. Another tool that you can make use of SCA (Security Configuration Assessment <https://documentation.wazuh.com/current/user-manual/capabilities/sec-config-assessment/index.html>). You do not require an additional licence to make use of this one.
Hope this was helpful. Let me know if you need anything else. Regards, Yana. On Tuesday, April 24, 2018 at 3:35:19 PM UTC+2 Charles Mckee wrote: > Hello All, > > > > I would like to know has anyone gotten OSSEC to do an audit using the > CIS-Benchmarking V7 standard on Linux servers? > > > > If you have how and what configs did you use? > > > > Please can you let me know explicitly. > > > > I thank you for your time !! > > > > Respectfully Yours > > Charles McKee > > > > *Decisiv**E**dge**, LLC* > > *O:* 302.299.1570 x43 <(302)%20299-1570>2 *|* *C:* 302.3 > <(302)%20299-0406>20.6968 *|* *F:* 302.299.1578 <(302)%20299-1578> > > 131 Continental Dr | Suite 409 | Newark, DE 19713 > <https://maps.google.com/?q=131+Continental+Dr+%7C+%C2%A0Suite+409+%C2%A0%7C+%C2%A0Newark,+DE+19713&entry=gmail&source=g> > > charle...@decisivedge.com *|* www.DecisivEdge.com > <http://www.decisivedge.com/> > > > > ------------------------------ > > This email and any files transmitted with it are considered privileged and > confidential unless otherwise explicitly stated otherwise. If you are not the > intended recipient you are notified that disclosing, copying, distributing or > taking any action in reliance on the contents of this information is strictly > prohibited. All email data and contents may be monitored to ensure that their > use is authorized, for management of the system, to facilitate protection > against unauthorized use, and to verify security procedures, survivability > and operational security. Under no circumstance should the user of this email > have an expectation of privacy for this correspondence. > > -- --- You received this message because you are subscribed to the Google Groups "ossec-list" group. To unsubscribe from this group and stop receiving emails from it, send an email to ossec-list+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ossec-list/81d64edc-80a3-4f21-bb00-6dab04e48c9fn%40googlegroups.com.
