Giter VIP home page Giter VIP logo

bolt_compliance's Introduction

bolt_compliance

Table of Contents

  1. Description
  2. Setup - The basics of getting started with bolt_compliance
  3. Usage - Configuration options and additional functionality
  4. Limitations - OS compatibility, etc.

Description

An example module showing how to implement CIS compliance testing tasks and plans which can send the output to Splunk.

Setup

Install the bolt_compliance module

puppet module install puppetlabs-stdlib
mkdir ~/modules
cd ~/modules
git clone https://github.com/timidri/bolt_compliance.git
cd bolt_compliance

Install python requirements

pip install -r requirements.txt

Configure Splunk

To use bolt_compliance, you need to create a Splunk HTTP Event Collector token in a Splunk Enterprise instance available to you. See Splunk HEC Service for guidance.

Then, create a configuration file inventory.yaml:

cp inventory-default.yaml inventory.yaml

and configure the Splunk HEC endpoint and token there.

Usage

To run a compliance plan, make sure you have some CentOS or Red Hat 7 nodes configured in the inventory.yaml. Then, you can run the plan as follows:

bolt plan run bolt_compliance::run --params '{"controls": ["1_1_2", "5_1_1"]}' -n all

to perform both available control checks on all the configured nodes.

To run a plan using the benchmark yaml specification in rhel7-cis-1.yaml, do:

bolt plan run bolt_compliance::run_yaml --params '{"benchmarks": ["rhel7-cis-1"]}' -n all

Limitations

The examples are for PoC / educational purposes only and only work on RHEL7 target nodes.

bolt_compliance's People

Contributors

ka83753 avatar timidri avatar

Watchers

avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.