OpenSCAP Description

OpenSCAP provides many tools that can be used by auditors and administrators to help them assess, measure, and enforce security baselines. Our system is flexible and interoperable, which reduces the cost of security audits. OpenSCAP provides a wide range of configuration baselines and hardening guides that have been developed by the open-source community. This allows you to choose the security policy that best suits your organization's needs, regardless of its size. Security Content Automation Protocol (SCAP), is a U.S. standard that is maintained by the National Institute of Standards and Technology. OpenSCAP is an open-source project that implements and enforces this standard. It was awarded the SCAP1.2 certification by NIST in 2014. It is essential to ensure security compliance in an ever-changing world where new vulnerabilities are discovered and fixed every day.

OpenSCAP Alternatives
Runecast Reviews
Runecast
Runecast is an enterprise IT platform that saves your Security and Operations teams time and resources by enabling a proactive approach to ITOM, CSPM, and compliance. Your team can do more with less via a single platform that checks all your cloud infrastructure, for increased visibility, security, and time-saving. Security teams benefit from simplified vulnerability management and regulatory compliance, across multiple standards and technologies. Operations teams are able to reduce operational overheads and increase clarity, enabling you to be proactive and return to the valuable work you want to be doing.
Learn more
Tripwire Reviews
Tripwire
Cybersecurity for Industrial and Enterprise Organizations. The industry's most trusted foundational security controls will protect you from cyberattacks. Tripwire is able to detect threats, identify vulnerabilities, and harden configurations instantly. Tripwire Enterprise is trusted by thousands of organizations as the heart of their cybersecurity programs. You can join them and have complete control of your IT environment using sophisticated FIM/SCM. Reduces the time required to detect and limit damage caused by anomalies, threats, and suspicious behavior. You have a clear, unrivalled view of your security system status and can assess your security posture at any time. Integrates with existing toolsets of both IT and security to close the gap between IT & security. Policies and platforms that go beyond the box enforce regulatory compliance standards.
Learn more
Data Theorem Reviews
Data Theorem
Your global, multi-cloud environment should be able to inventory your apps, APIs, shadow assets, and other resources. You can create custom policies for different asset types, automate attack tools, or assess vulnerabilities. Before production begins, fix security issues to ensure that cloud and application data are compliant. Rollback options allow for automatic remediation of security vulnerabilities to prevent data leakage. Great security can make problems disappear. Good security can quickly find problems. Data Theorem is committed to creating great products that automate some of the most difficult areas of modern application security. The Analyzer Engine is the heart of Data Theorem. Use the Data Theorem analyzer engine and proprietary attack tools to continuously hack into and exploit application weaknesses. Data Theorem created TrustKit, the best open-source SDK. It is used by thousands of developers. So customers can continue to secure their entire Appsec stack, our technology ecosystem continues to expand.
Learn more
SaltStack Reviews
SaltStack
(2 Ratings)
SaltStack is an intelligent IT automation platform that can manage, secure, and optimize any infrastructure--on-prem, in the cloud, or at the edge. It is built on an event-driven automation engine that detects and responds intelligently to any system. This makes it a powerful solution for managing complex environments. SaltStack's new SecOps offering can detect security flaws and mis-configured systems. This powerful automation can detect and fix any issue quickly, allowing you and your team to keep your infrastructure secure, compliant, and up to date. Comply and Protect are both part of the SecOps suite. Comply scans for compliance with CIS, DISA, STIG, NIST and PCI standards. Also, scan your operating system for vulnerabilities and update it with patches and patches.
Learn more

Integrations

View Integrations

Reviews

Total
ease
features
design
support

No User Reviews. Be the first to provide a review:

Write a Review

Company Details

Company:
OpenSCAP
Year Founded:
2014
Headquarters:
United States
Website:
www.open-scap.org

Media

Play Video OpenSCAP Screenshot 1 OpenSCAP Screenshot 2 OpenSCAP Screenshot 3
Recommended Products
Secure your business by securing your people. Icon
Secure your business by securing your people.

Over 100,000 businesses trust 1Password

Take the guesswork out of password management, shadow IT, infrastructure, and secret sharing so you can keep your people safe and your business moving.
Try it free for 14 days

Product Details

Platforms
SaaS
Linux
Type of Training
Documentation
Customer Support
Online

OpenSCAP Features and Options

Vulnerability Scanners

Asset Discovery
Black Box Scanning
Compliance Monitoring
Continuous Monitoring
Defect Tracking
Interactive Scanning
Logging and Reporting
Network Mapping
Perimeter Scanning
Risk Analysis
Threat Intelligence
Web Inspection

OpenSCAP User Reviews

Write a Review
  • Previous
  • Next