Questions tagged [oval]

Open Vulnerability and Assessment Language: Used for automating security tools and services

https://oval.mitre.org/

International in scope and free for public use, OVAL is an information security community effort to standardize how to assess and report upon the machine state of computer systems. OVAL includes a language to encode system details, and an assortment of content repositories held throughout the community.

Tools and services that use OVAL for the three steps of system assessment — representing system information, expressing specific machine states, and reporting the results of an assessment — provide enterprises with accurate, consistent, and actionable information so they may improve their security. Use of OVAL also provides for reliable and reproducible information assurance metrics and enables interoperability and automation among security tools and services.

2 questions
2
votes
1 answer

How can I use openscap to do an offline OVAL scan of a Cisco router?

This doc describes a process of scanning a router's "show tech" file with a joval utility. I downloaded joval's trial, but didn't see that utility. Can openscap do offline OVAL scans of Cisco routers? I want the routers to generate some file (show…
red888
  • 4,069
  • 16
  • 58
  • 104
0
votes
2 answers

VMWAre OVFtool export fails with error "Failed to create directory"

I am trying to export a VM using OVFtool running on a windows server ovftool.exe --allowExtraConfig --noImageFiles --noSSLVerify "vi://xx.xx.xx.xx/myVM" "c:\myPath" Enter login information for source vi://xx.xx.xx.xx/ Username: myid Password:…
Yogesh Devi
  • 161
  • 4