This is the first iteration of the CIS plugin for SARA.  To install,
you will have to get a copy of sara at http://www-arc.com/sara/downloads
(note that this has been provided for this iteration).  When
uncompressed/untarred, go the sara directory and perform a
make xxx where xx is one of the following OS's:

    aix osf bsd bsdi dgux irix4 irix freebsd
    hpux9 hpux linux linux-nansi sunos4 sunos5 trusted-sunos5 sysv4

Then install the plugin in the sara directory and perform an uncompress
and tar. (this has also been done with this iteration.

For non-interactive use, type the following:

./sara -d DB -r host definition

where DB is the name of the SARA database where data will be stored.
      If you don't supply the -d DB then the default database will be
      used.

      'host definition' can be a host, hosts, range of IPs or subnet

Details can be found in the SARA man page sara.8

For interactive use, type ./sara and

1.  Go to data management if you want to select a non default database
2.  Go to target selection to select host, IP range, or subnet
3.  Go to Data Analysis for results

A few notes:

1.  With the CIS plugin, SARA will not look for vulnerabilities.
2.  The CIS plugin does not currently address rpc,ldap, nor xdm.
3.  Services that were identified in the Toddbench.txt but not in 
    the current ruleset are identified to paragraph 3.x.

Pls send comments to toddr@arc.com
