Cavirin Automated Risk Analysis Platform (ARAP)
Cavirin’s Automated Risk Analysis Platform (ARAP) is a purpose-built, agentless solution that can be quickly deployed as a Docker container and capable of ensuring the security and compliance posture of IT infrastructure resources on private, public, or hybrid clouds. It is capable of discovering the IT assets and brings in deep configuration information that can be evaluated against regulatory guidelines such as PCI, HIPAA, ISO, and SOC. Issues identified as a result of security and compliance scan can exported as reports that includes detailed remediation suggestions. The integration of ARAP with infrastructure platforms such as Chef enables the orchestration of automatic remediation of assets that failed the security scans.
Feature Highlights of ARAP Version 8.4
Automated, deep discovery the IT assets and resources across your private, hybrid, and public clouds, and collection of configuration information that matters in the evaluation of security/compliance posture of the infrastructure as a whole.
Currently Supported public clouds: AWS, Azure
Security Scanning against hardening rules:
a. AWS Security Hardening Best Practices
b. Center for Internet Security AWS Foundation Benchmarks
Security scanning of Docker hosts and containers
a. Center for Internet Security (CIS) Benchmarks for Docker Security.
Policy Packs for regulatory compliance
Installation Guide for ARAP as a Docker Container
Install Docker on any Linux Host. Installation guide
Steps to install
arapimage using the following docker command.
$ docker pull cavirinsystems/arap:latest
docker imagesto check if the required image is downloaded from the repository.
$ docker images
Run the downloaded image using the following command. (
-dwill make it run in background.)
$ docker run -P -d cavirinsystems/arap:latest
Check the status of running containers using
$ docker ps CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS 48a4c91e3677 cavirinsystems/arap:latest "./arap.sh" 59 seconds ago Up 57 seconds 0.0.0.0:32773->443/tcp
<port number> : note the port number which is mapped to 443 on docker container. ( for eg.
32773is mapped to
Check the ip of the host on which Docker engine is installed.(if its on local then it will be localhost else check using ifconfig command).
go to the browser and type
https://host-ip-address:port/novafor eg. if running docker on local machine then url would be
note: after running the
docker runin step
Steps to installit will take around 7-10 mins for machine to get up and running
Obtaining License for ARAP
To obtain a free, evaluation license, please contact email@example.com with the following mandatory information:
- Company Name
- Contact Name
- Email Address
- Phone Number