Code Monkey home page Code Monkey logo

inspec-developer-v1's Introduction

home heroImage actionText actionLink features footer
true
/logo.png
Get Started with InSpec →
docs/course/README.md
title details
Describe the InSpec framework and its capabilities
Create components, connected components, modules - and their tests - right from the CLI
title details
Describe the architecture of an InSpec profile
Enjoy the best DX and code your app at the speed of thought! With HMR for client and server
title details
Build an InSpec profile to transform security policy into automated security testing
Common style guide, TypeScript and the best test setup guarantee code quality and non-breaking changes
title details
Run an InSpec profile against a component of an application stack
SEO (document head tags management) and server-side-rendering for search engines
title details
View and analyze InSpec results
Scalable apps need to support multiple languages, easily add and support multiple languages
title details
Report results
Offline-first support with service-workers and a lighthouse score as high as possible
Apache-2.0 | Copyright © 2019 - The MITRE Corporation

NOTICE

© 2019-2022 The MITRE Corporation.

Approved for Public Release; Distribution Unlimited. Case Number 18-3678.

NOTICE

MITRE hereby grants express written permission to use, reproduce, distribute, modify, and otherwise leverage this software to the extent permitted by the licensed terms provided in the LICENSE.md file included with this project.

NOTICE

This software was produced for the U. S. Government under Contract Number HHSM-500-2012-00008I, and is subject to Federal Acquisition Regulation Clause 52.227-14, Rights in Data-General.

No other use other than that granted to the U. S. Government, or to those acting on behalf of the U. S. Government under that Clause is authorized without the express written permission of The MITRE Corporation.

For further information, please contact The MITRE Corporation, Contracts Management Office, 7515 Colshire Drive, McLean, VA 22102-7539, (703) 983-6000.

inspec-developer-v1's People

Contributors

aaronlippold avatar camdenmoors avatar dependabot[bot] avatar ejaronne avatar hackershark avatar kclinden avatar lukemalinowski avatar rx294 avatar

Stargazers

avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Forkers

kclinden yalonso7 secureonelabs ekmixon hartl3y94 ahasunos

inspec-developer-v1's Issues

Use inputs directly

Section 4.5 has 2 instances of inputs being assigned to a variable. We discussed using them directly with matchers going forward.

STIG TO Profile -> There is a hole

9.1 - Here is your STIG XCCDF File
a. Look at it in S TIGViewer ( standard apprach )
b. Look at it in Heimdall LIte ( ???? )

9.2 - SAF CLI generate - Creaing the 'bones' of your profile / controls
a. Creates our stubs does our mapping etc.
b. Creates the base of our proifle etc

9.3 - ( current 9.2 ) ... but let's break it into two steps
a. The STUB with out describe blocks ( aka new 9.2 output )
b. what we have there now ...
c. Brings us to "current 9.3" - Students work on your controls

9..4 -> current 9.3 work on your code

Remove current 9.4 as it adds no value, perhaps update it to the list of controls that we set to NA with there justifications as that is a more useful dicission topic.

Update the Resources Section - Top Bar

How is this differnt or not part of Section 11?

Should Section 11 be removed?

  1. Code Background & Primers
  • Ruby
  • RSpec
  • InSpec Docs
  1. Codespaces and Git Links and Docs
  • Git Primer and Intro
  • Codespaces Documentation
  1. Downloads and Tools
  • InSpec
  • Cinc
  • VSCode
  • Codespaces
  1. STIGs and Benchmarks
  • RHEL8 STIG - public.cyber.mil
  • RHEL8 InSpec Profile
  • CIS RHEL8 Benchmark ( for background )
  • Webserver SRG docs - public.cyber
  • nginx-srg-baseline-proifle

Update Section 5 and 6 names for clarily

Secion 5 seems to be 'generating results' and section 6 seems to be viewing and analysing results.

Heimdall Tools is not active any more so lets not reference it

I think we need to add a bit more meat to these sections as well

RHEL6 to RHEL7

We discussed using RHEL7 instead of RHEL6
Agreeing on this change would require a lot of modifications on this page

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.