1. 安装openscap 
    $ sudo yum install -y openscap-scanner scap-security-guide
  2. 更新/usr/share/openscap/cpe/下的openscap-cpe-dict.xml和openscap-cpe-oval.xml 
    链接:https://pan.baidu.com/s/1QDMECfGgW0PUkjcuarUIjg 
提取码:2hwp
  3. 上传ssg-centos8-ds.xml到目录/usr/share/xml/scap/ssg/content/ 
    链接:https://pan.baidu.com/s/1pQ-CVPDhrINvKP5RVjQ-UQ 
提取码:zo06
  4. 评估PCI-DSS相关的内容 
    $ oscap xccdf eval --results results.xml --profile xccdf_org.ssgproject.content_profile_pci-dss /usr/share/xml/scap/ssg/content/ssg-centos8-ds.xml
  5. 产生方便阅读的html格式报告
$ oscap xccdf generate report --output report.html results.xml