.gif)
The Bandolier Security Audit Files are available as release packages by product family. The release package includes all the audit files for the various application components, a readme file, and additional documentation or files if necessary.
- Download the Bandolier Baselines Package
- Download the ABB 800xA PPA Release Package
- Download the AREVA e-terra Release Package
- Download the Control Systems International UCOS Release Package
- Download the Emerson Ovation Release Package
- Download the Matrikon Security Gateway/Tunneller Release Package
- Download the OSIsoft PI Enterprise Server Release Package
- Download the Siemens Spectrum Power TG 8.2 Release Package
- Download the SISCO AX-S4 ICCP Release Package
- Download the SNC GENe Release Package
- Download the Telvent OASyS DNA 7.5 Release Package
The Bandolier Nessus Scan Policies are being developed to gather information that is helpful for NERC CIP compliance and security efforts. They are grouped by the relevant CIP or specific CIP requirement.
- Download the NERC CIP-007 R8 Scan Policy Package, V1.2
Bandolier License Agreement
Digital Bond creates two Bandolier Security Audit Files for each control system component. The application-level file was developed by Digital Bond, Inc. This Bandolier Security Audit File is the sole property of Digital Bond, Inc., and Digital Bond retains full ownership rights to this file.
Most of the OS-level files are a modified version of a .audit file originally written and maintained by Tenable Network Security. The original .audit file is copyright Tenable Network Security. Tenable has granted Digital Bond permission to make modifications to the original .audit file, to produce an updated .audit file, and to distribute this updated .audit file to its customers and partners. Tenable and Digital Bond maintain a collective ownership of this updated .audit file, called a Bandolier Security Audit File for OS checks.
The OS-level files for Windows 7 and Windows 2008 Server are the sole property of Digital Bond, Inc., and Digital Bond retains full ownership rights to this file.
Digital Bond is providing the Bandolier Security Audit File “as is” without: (1) any warranties to the effectiveness or accuracy or (2) the responsibility to make or notify you of any bug fixes or updates of any kind.
Restriction: The Bandolier Security Audit Files or any derivative of these files shall not be posted on any website, bulletin board, ftp server, newsgroup, or other similar mechanism or device without the prior written consent of Digital Bond, Inc.
Digital Bond thanks the Center for Internet Security (“CIS”) for the use of their consensus security configuration Benchmarks as resources in developing the Bandolier audit files. In some instances, Digital Bond has modified the CIS Benchmark recommendations for fit to Industrial Control Systems. Given these modifications, the resulting audit files do not represent the CIS Benchmarks or the result of the CIS consensus process.
