New Assessment Evidence in CIS-CAT Pro Assessor v4.0.21
Analyzing security configuration assessment results is paramount to remediation planning efforts. The latest update to CIS-CAT Pro Assessor includes configuration assessment evidence in the HTML report. The evidence provides an “in-depth” view of an endpoint’s state and assists in remediation planning. Check out the latest changes to CIS-CAT Pro Assessor, available on June 30, 2020.
Highlighted Features of CIS-CAT Pro Assessor v4.0.21
More Detailed Assessment Evidence for Score Results
CIS-CAT Pro Assessor v4 reporting indicates “Pass” or “Fail” of configuration. In order to make it easier to understand why a score of “Fail” is shown, we’ve included more information. Now, an endpoint’s state and CIS Benchmark expected values appear on the HTML formatted configuration report. CIS SecureSuite Members have told us that this was a highly missed feature in v4. This addition is similar to functionality in CIS-CAT Pro Assessor v3.
New Evidence Supporting Assessment Score
Additional information has been added to the HTML configuration report, including:
- The state of endpoint,
- The criteria the CIS Benchmark specified as conditions for a result of “Pass”
- The endpoint’s information collected during the assessment
- The overall recommendation score
Understanding the Overall HTML Report
The HTML report provides detailed information that can be utilized by system owners when determining the disposition of the results. For some results of “Fail,” an organization may find that the risk is already mitigated. In this case, utilize CIS-CAT Pro Dashboard to apply exceptions to the recommendations that can result in a score of “Pass” on import to CIS-CAT Pro Dashboard. Another option is to tailor the CIS Benchmark conditions or score type in CIS WorkBench.
We’ve added information to the CIS-CAT Pro Assessor v4 Online User Guide to help understand the results in the HTML report. The report now shows the overall report score and how the results were computed.
We’ve modified the display of recommendations that cannot be fully automated to show in the report body as “Manual.” Previously, these results were represented as “Informational.” This is consistent with scoring represented on our latest CIS Benchmark published documents. The *.csv and *.txt output formats on assessment configuration processes has also changed. For Members utilizing those results in ways other than importing to CIS-CAT Pro Dashboard, please verify any logic changes made in your organization’s scripts or 3rd party tools to accommodate the word change to “Manual.” This has also been modified in CIS-CAT Pro Assessor v3.0.67.
Automated CIS Benchmark Support
New or updated CIS Benchmark automated assessment content now supported in CIS-CAT Pro Assessor v4.0.21 includes the following technologies:
- CIS CentOS Linux 7
- CIS Microsoft Windows 8.1
- CIS Microsoft Windows Server 2012
- CIS Microsoft Windows Server 2012 R2
- CIS Microsoft Windows Server 2016 RTM
- CIS Oracle Linux 7
- CIS Red Hat Linux 7
- CIS VMWare ESXi 6.7
- Additional HTML Customization Options
The latest CIS-CAT Pro Assessor v4 release includes additional customization options for the HTML report:
- Customize the footer on the HTML cover page.
- Add graphics to the custom folder for utilization in the assessor-cli.properties file
- Ability to turn off the cover page footer, if desired
Read more about how to customize the HTML report in our online guide.
Stay Informed and Collaborate with CIS
Want to be alerted more quickly when there’s a new release? Read about how to integrate CIS-CAT Pro Dashboard with CIS WorkBench.
CIS appreciates the volunteers, partners, and CIS SecureSuite Members who work together to improve configuration security for everyone. By providing feedback on best practices, testing new software builds, and sharing expertise, these communities are continuously helping CIS to improve and grow.
Interested in sharing your endpoint configuration challenges with a CIS-CAT Pro team member? Want to contribute to our design of new functionality, or test a new feature? We love hearing real-world experiences and challenges! Reach out to us at [email protected]. Your input makes a real difference.
Access the Latest Version of CIS-CAT Pro
CIS SecureSuite Members can download the latest updates to CIS-CAT Pro Dashboard by logging into CIS WorkBench. Don’t forget to check the CIS-CAT Pro Dashboard Change Log and CIS-CAT Pro Assessor v4 Change Log for a complete listing of all changes!
To take advantage of all the benefits of CIS-CAT Pro, full format CIS Benchmarks, and more, become a CIS SecureSuite Member.