Does anyone know if Cirrus Policy Reporter has the capability to perform compliance reports against security configuration guidelines (CIS, DISA STIGS).? I know that they can be created manually. Has anyone actually done this?
I too am interested in this. I'm looking to run against a CIS STIG.
-Greg
I created a report (that maps to some of the STIG) but since the reporting feature is bit weak, I wouldn't give it to the auditors Is there a way to export rules? Maybe we could all combine our rules and make one!
