Loading repository data…
Loading repository data…
mskoddow / repository
This application contains several hundred hand-picked and completely newly developed instance scan checks for ServiceNow. They focus purely on basic platform and security aspects and are therefore ideal for hardening a freshly provisioned instance. I have also added some additional features to make using Instance Scan Checks more convenient.
A transparent discovery signal based on current public GitHub metadata.
This score does not audit code, security, maintainers, documentation quality, or suitability. Verify the repository and its current documentation before adoption.
This repository contains a custom application for ServiceNow called My Instance Scan Collection. This application contains several hundred hand-picked and completely new instance scan checks that I have collected over the past few years. The primary focus of these checks is on basic platform and security issues, making them ideal for hardening ServiceNow instances. They cover a wide range of areas, including but not limited to:
In addition to the instance scan checks, this application provides several extra functionalities to enhance the ServiceNow platform. These functionalities include:
To install this application, follow these steps:
Fork the repository using the instructions provided in the GitHub documentation.
Tip: A clone is generally not required because tools like the ServiceNow Studio can connect to and work with remote repositories.
Link and import the forked repository into ServiceNow by following the instructions in a great article by Jesse.
Hint: As the new ServiceNow Studio still has no Git capabilities you have to do perform all Git-based activities in the legacy Studio.
Once the application is imported into your ServiceNow instance, you can access the instance scan checks and prebuilt scan suites through the ServiceNow interface. Detailed usage instructions are available in the ServiceNow documentation pages.
Each check can be used individually or transferred to other applications or suites, as there are no central or external dependencies, such as script includes.
In order to deactivate checks without touching them, I have built a condition into all checks which verifies whether a value exists for an related system property (consisting of table name and Sys ID). If yes, the condition returns “false” and the check is not executed.
If you encounter any issues with the application, you can create an issue
I welcome contributions to improve this application and extend the collection with even more instance scan checks. To contribute, please create pull requests and I will review them.
This project is licensed under the "GNU General Public License v3.0". See the LICENSE file for more details.