usnistgov/macos_security
1
0
Fork 0
mirror of https://github.com/usnistgov/macos_security.git synced 2026-03-23 08:20:27 +00:00
Code Issues 21 Actions Packages Projects Releases Wiki Activity
1,647 Commits 30 Branches 61 Tags
sequoia
Commit Graph

47 Commits

Author SHA1 Message Date
Bob Gendler
fe09001686 updates for DISA STIG 
Signed-off-by: Bob Gendler <robert.gendler@nist.gov>
 2025-12-17 15:36:35 -05:00
Dan Brodjieski
e5876d5cbe Merge branch 'sequoia' into dev_sequoia_bio 2025-11-21 16:30:10 -05:00
Dan Brodjieski
2fe891db30 docs[stig]: update refernces to V1R4 2025-09-09 11:35:35 -04:00
Jordy Witteman
d7be09a4de NLMAPGOV updates 
- Added additional audit rules to `nlmapgov_base`
- Added first draft of `nlmapgov_plus`, designed as a complete package with rules from best practices from the field and other baselines. Still requires evaluation and altering by organizations.
 2025-07-24 17:12:32 +02:00
Jordy Witteman
e569753014 Merge branch 'usnistgov:main' into nlmapgov 2025-07-10 17:02:03 +02:00
Jordy Witteman
2061622396 Minor name change 
Minor name change
 2025-05-26 17:27:55 +02:00
Jordy Witteman
f702efa237 Merge branch 'sequoia' of https://github.com/usnistgov/macos_security into usnistgov-sequoia 2025-05-26 15:49:41 +02:00
Dan Brodjieski
16d0501b28 update[cis]: additional controls for v1.1.0 2025-05-07 10:30:12 -04:00
Bob Gendler
037df92bbc updated STIG release 2025-04-14 10:26:05 -04:00
Jordy Witteman
cd2187c0a4 Eerste experiment baseline aanmaken 
Eerste experiment baseline aanmaken met mSCP. Inhoudelijke regels zijn enkel om mechanisme te testen.
 2025-03-27 17:08:52 +01:00
Bob Gendler
7e238adb56 added com.apple.photos.shareddefaults 2025-01-28 10:13:31 -05:00
Allen Golbig
8f8e27fdd8 updated title 2024-10-30 10:07:35 -04:00
Bob Gendler
4e89c26fe8 refactor - DISA STIG 
references updated to sequoia for DISA STIG
baseline file created for disa stig
 2024-10-24 09:25:19 -04:00
Bob Gendler
1315f06638 800-171 Rev 2 to Rev 3 2024-09-23 11:26:43 -04:00
Bob Gendler
bdd06fd928 refactor[baselines] Added baseline files 
Added baseline files
Edit mscp-data to reflect 15.x not 14.
 2024-09-09 21:09:56 -04:00
Bob Gendler
98c46e62ef updated supported payloads. copied sudo_log from stig 2024-09-04 10:53:39 -04:00
Bob Gendler
539cdfd83d refactor[rules] Added Disk Management DDM 
Added com.apple.configuration.diskmanagement.settings to mscp-data
Added os_external_storage_restriction
Added os_network_storage_restriction
 2024-07-26 14:50:43 -04:00
Bob Gendler
96ade12e2f feat[ddm] Added DDM to sequoia 
Updated scripts and rule files
 2024-07-24 14:00:10 -04:00
Dan Brodjieski
08dc48ec77 fix: removed duplicate policies 
Removed password policies from the pwpolicy.xml file that can be set with a profile.

Issue #373
 2024-03-04 15:39:54 -05:00
Dan Brodjieski
7ff8240bca chore[baseline]: updated STIG yaml 
removed unneeded support files
 2024-01-31 12:24:14 -05:00
Dan Brodjieski
701ed9bec0 chore[rules]: updates from published STIG 
added STIG references and updated baselines to support latest release from DISA
 2024-01-24 08:16:00 -05:00
Dan Brodjieski
f06782a180 Merge branch 'sonoma' into dev_sonoma_disa 2024-01-23 15:45:21 -05:00
Bob Gendler
49a8b1663d refactor[includes] Updated enablePF-mscp.sh 
Updated script based on slack discussion
 2023-11-28 10:39:21 -05:00
Dan Brodjieski
37b00778fc Merge branch 'dev_sonoma' into dev_sonoma_disa 
Attempt to resync latest Sonoma changes
 2023-09-14 15:18:30 -04:00
Dan Brodjieski
5acbdbd21e chore: clean up extraneous trailing whitespace 2023-09-14 14:21:06 -04:00
Dan Brodjieski
861d14815b refactor[stig]: merged SRGs from DISA 
Rewrote all the rule yaml files to have correct SRG references.
Added scripts to work with new STIG workflows.
 2023-08-31 11:37:33 -04:00
Allen Golbig
c396f18b24 feat[baseline] dev_sonoma 
dev_sonoma
 2023-07-13 22:17:34 -04:00
Bob Gendler
85e2d68fe4 [refactor] rules, baselines, includes 
Added cnssi and disa stig to mscp-data.yaml
Generated updated baseline files
Fixed merge issue with audit_files_owner_configure
 2023-06-22 13:01:59 -04:00
Bob Gendler
fc9d45b03c Merge branch 'dev_ventura_cmmc' into ventura 2023-06-22 12:23:41 -04:00
Bob Gendler
0d719fc53e added com.apple.sharingd payload 2023-06-22 10:56:50 -04:00
Allen Golbig
9e29b7c86c refactor[rules] removed level 3 from cmmc 
Removed lvl 3 from cmmc
 2023-05-25 16:25:41 -04:00
Allen Golbig
74c536f3ef fix[mscp-data] Fixed titles for cmmc baselines 
Fixed titles for cmmc baselines
 2023-04-27 17:22:58 -04:00
mahlmanj
318cc09cd3 Updating temaples and scripts 2022-12-19 12:23:46 -05:00
Allen Golbig
bf89986362 fix[helperfile] fixed mscp-data file 
Added All Rules title to mscp-data.yaml
 2022-12-05 14:41:38 -05:00
Allen Golbig
5bf1f70f45 feat[script] Additional Authors 
Sync changes from monterey to support additional authors

Issue #105
 2022-12-01 19:24:34 -05:00
Bob Gendler
2434a22cdb refactor [includes] Added additional domain 
Added additional payload domain com.apple.locationmenu
 2022-10-18 17:20:33 -04:00
Bob Gendler
16bf58f49d refactor[smartcards] Added info on ignoreARD key 
Created information in supplemental and authorization header on the
ignoreARD key for smartcards and screen sharing and screen recording.
 2022-09-20 16:20:13 -04:00
Allen Golbig
cb9c041553 #106 2022-02-15 21:06:17 -05:00
Allen Golbig
ce6040e7ce added cis rules 2022-01-12 15:08:58 -05:00
Allen Golbig
63a0ac8a3d additional cis controls 2021-12-28 08:50:09 -05:00
Dan Brodjieski
5ba3ccf0bc Fixed logic for supported payloads 2021-10-18 12:30:03 -04:00
Allen Golbig
c98af8e4ba firewall log changes 2021-08-25 13:51:59 -04:00
Allen Golbig
838fdc372f fixed mcx for guest account 2021-01-20 10:50:38 -05:00
Dan Brodjieski
5492ee6195 added globalpreferences to supported payloads 2020-10-02 16:13:32 -04:00
Dan Brodjieski
cea72947bd custom templates now supported 2020-09-14 10:50:59 -04:00
Bob Gendler
d2268e3d8b Update supported_payloads.yaml 2020-06-19 11:48:17 -04:00
Bob Gendler
32452073de Initial content commit 2020-06-11 17:47:26 -04:00