STIG & SCAP Walkthrough: SCC Scan, STIG Viewer, and Real Remediation скачать в хорошем качестве

STIG & SCAP Walkthrough: SCC Scan, STIG Viewer, and Real Remediation

Learn how to run a SCAP scan using the SCAP Compliance Checker (SCC) on a Windows virtual machine, export XML results, interpret findings in STIG Viewer, and perform basic Windows STIG remediation. This video starts with a clear explanation of STIGs, SRGs, and SCAP, then walks through a hands-on compliance workflow used in DoD, RMF, and CMMC environments. You’ll see how assessors actually validate technical controls — not just what the documentation says. 🔐 What You’ll Learn: What STIGs, SRGs, and SCAP are and how they work together How to run a SCAP scan using SCC on a Windows VM How to export XML scan results for compliance evidence How to review findings in STIG Viewer How to perform basic Windows STIG remediation How automation supports — but does not replace — manual validation This walkthrough is ideal for: RMF Engineers ISSOs / ISSMs CMMC practitioners Cybersecurity students DoD contractors 📌 Key takeaway: A clean scan alone does not equal compliance — proper validation and documentation matter. How to use a Hypervisor and VM: https://academy.tcm-sec.com/courses/e... Section 8. Lessons 2-4. Windows 11 Enterprise: https://www.microsoft.com/en-us/evalc... DoD Cyber Exchange: https://www.cyber.mil/