oscap-vm (8) - Linux Manuals

oscap-vm: Tool for offline SCAP evaluation of virtual machines.

Command to display oscap-vm manual in Linux: $ man 8 oscap-vm

NAME

oscap-vm - Tool for offline SCAP evaluation of virtual machines.

DESCRIPTION

oscap-vm mounts given virtual machine and runs oscap tool on it.

The tool requires bash, guestmount, mktemp and umount to perform OVAL and XCCDF evaluation of virtual machines.

Usage of the tool mimics usage and options of oscap(8) tool.

USAGE

Evaluation of XCCDF content

$ oscap-vm image VM_STORAGE_IMAGE xccdf eval [options] INPUT_CONTENT

$ oscap-vm domain VM_DOMAIN xccdf eval [options] INPUT_CONTENT

supported oscap xccdf eval options are:
  --profile
  --tailoring-file
  --tailoring-id
  --cpe (external OVAL dependencies are not supported yet!)
  --oval-results
  --sce-results
  --check-engine-results
  --results
  --results-arf
  --report
  --skip-valid
  --fetch-remote-resources
  --progress
  --datastream-id
  --xccdf-id
  --benchmark-id

Evaluation of OVAL content

$ oscap-vm image VM_STORAGE_IMAGE oval eval [options] INPUT_CONTENT

$ oscap-vm domain VM_DOMAIN oval eval [options] INPUT_CONTENT

supported oscap oval eval options are:
  --id
  --variables
  --directives
  --results
  --report
  --skip-valid
  --datastream-id
  --oval-id
  --probe-root

Collection of OVAL System Characteristic

$ oscap-vm image VM_STORAGE_IMAGE oval collect [options] INPUT_CONTENT

$ oscap-vm domain VM_DOMAIN oval collect [options] INPUT_CONTENT

supported oscap oval collect options are:
  --id
  --syschar
  --variables
  --skip-valid

REPORTING BUGS

Please report bugs using https://github.com/OpenSCAP/openscap/issues

AUTHORS

Martin Preisler <mpreisle [at] redhat.com>