Custom SCAP File for Configuration Audit Check

Before moving to Rapid7 InsightVM, we heavily relied on custom audit files for configuration audit checks with For example, we would have the audit file run PowerShell cmdlets to check for required security software, services, and file contents.
Now that we are on Rapid7 InsightVM, I am not finding a policy scan SCAP file reference guide of sorts, or examples of SCAP files to do these configuration checks.
Is there any guidance available on how to build these SCAP files from scratch for policy scans?

1 Like