CIS Benchmark Evaluation

This repository is part of the paper Automated Implementation of Windows-related Security-Configuration Guides presented at the 35th IEEE/ACM International Conference on Automated Software Engineering. In this repository, we have collected our evaluation data using 12 benchmarks of the Center for Internet Security (CIS). For each benchmark:

We have set up a clean VM with the tested OS. If the tested software was not an OS, we installed the software on a Windows 10 instance.
We installed the CIS-CAT tool on the VM.
We executed the OVAL checks of the tested CIS benchmark with the CIS-CAT tool on the VM. The results are stored as before.html, e.g., for Windows 10.
Next, we executed the automatic remediation of the benchmark using our generated scripts.
Finally, we reran the OVAL checks. This time, the results are stored as after.html, e.g., for Windows 10.

You can download the benchmarks in their PDF from the CIS website.

If you have any questions, please create an issue or contact Patrick Stöckle.

Please also have a look at

Name		Name	Last commit message	Last commit date
Latest commit History 10 Commits
cis_chrome		cis_chrome
cis_internet_explorer_11		cis_internet_explorer_11
cis_office_2016		cis_office_2016
cis_office_2016_access		cis_office_2016_access
cis_office_2016_excel		cis_office_2016_excel
cis_office_2016_outlook		cis_office_2016_outlook
cis_office_2016_powerpoint		cis_office_2016_powerpoint
cis_office_2016_word		cis_office_2016_word
cis_win_10_1806		cis_win_10_1806
cis_win_7		cis_win_7
cis_win_8_1		cis_win_8_1
cis_windows_Server_2016_1607		cis_windows_Server_2016_1607
AUTHORS		AUTHORS
CITATION.cff		CITATION.cff
LICENSE		LICENSE
README.md		README.md
codemeta.json		codemeta.json

License

tum-i4/CIS-Benchmark-Evaluation

Folders and files

Latest commit

History

Repository files navigation

CIS Benchmark Evaluation

About

Topics

Resources

License

Stars

Watchers

Forks

Languages