← 返回命令列表

Linux command

scap-workbench 命令

文本

复制后可按需替换文件名、目录或参数。

常用示例

Launch SCAP Workbench

scap-workbench

Open a specific SCAP content file

scap-workbench [/usr/share/xml/scap/ssg/content/ssg-rhel8-ds.xml]

Open with a specific profile

scap-workbench --profile [xccdf_org.ssgproject.content_profile_pci-dss]

说明

SCAP Workbench is a graphical tool for security compliance scanning based on the Security Content Automation Protocol (SCAP). It provides an intuitive interface for evaluating systems against security policies like PCI-DSS, HIPAA, and OSPP. The tool uses XCCDF (Extensible Configuration Checklist Description Format) and OVAL (Open Vulnerability and Assessment Language) to define and check security configurations. It can scan local or remote systems, generate HTML reports, and apply remediation scripts. Security content is typically provided by the scap-security-guide package, installed to /usr/share/xml/scap/ssg/content/. Results can be exported in XCCDF, ARF (Asset Reporting Format), or HTML formats.

参数

--profile _id_
Select a specific profile from the content
--tailoring _file_
Load a tailoring file for profile customization
--skip-valid
Skip content validation
-h, --help
Display help information
--version
Display version information

FAQ

What is the scap-workbench command used for?

SCAP Workbench is a graphical tool for security compliance scanning based on the Security Content Automation Protocol (SCAP). It provides an intuitive interface for evaluating systems against security policies like PCI-DSS, HIPAA, and OSPP. The tool uses XCCDF (Extensible Configuration Checklist Description Format) and OVAL (Open Vulnerability and Assessment Language) to define and check security configurations. It can scan local or remote systems, generate HTML reports, and apply remediation scripts. Security content is typically provided by the scap-security-guide package, installed to /usr/share/xml/scap/ssg/content/. Results can be exported in XCCDF, ARF (Asset Reporting Format), or HTML formats.

How do I run a basic scap-workbench example?

Run `scap-workbench` in a terminal, then adjust file names, paths, flags, or remote targets for your system.

What does --profile _id_ do in scap-workbench?

Select a specific profile from the content