"<div id='read-me-content-container' style='font-family:segoe ui;'>" + 
"<h2 style='text-align:center'>STIG Viewer README File</h2>" +
"<table style='width:90%;margin:0 auto;'>" +
"<tbody>" + 
//End User Agreement
"<tr>" +
"<th style='border-bottom:1px solid #bbb'>End User License Agreement</th>" +
"</tr>" +
"<tr>" +
"<td>"+
"The DISA STIG Viewer Tool is a free program provided <b>\"AS IS\"</b>." +
" This program is distributed in the hope that it will be useful," +
" but WITHOUT ANY WARRANTY; without even the implied warranty of " +
" MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE." +
" By using the DISA STIG Viewer, you agree to the terms listed above." +
"</td>" +
"</tr>" +
"<tr style='height:15px'></tr>" +
//Important Notes
"<tr>" +
"<th style='border-bottom:1px solid #bbb'>Important Notes</th>" +
"</tr>" +
"<tr>" +
"<td>"+
"STIG Compatibility: " +
"The STIG Viewer is currently compatible only with DISA STIGs that " +
"have been converted into XCCDF 1.1 and 1.2 XML formats.  STIG documents not " +
"in this format will not work with the STIG Viewer.</br></br>" +

"Future Releases of DISA STIG Viewer past September 2017 will be" +
" compiled with Java 8 as Java 7 is no longer supported by Oracle." +
" Programs compiled with Java 8 are known to have compatibility" +
" issues with systems that only run Java 7 or earlier versions.</br></br>" +

"The STIGs List under the Checklist tab computes its scores considering" +
" a static weight of '10' for all rules. Many STIGs provided by DISA" +
" currently have each rule's weight set to a static value of '10'." +
" In the future, the score will consider the individual weight" +
" value of each rule.</br></br>" +

"</td>" +
"</tr>" +
"<tr>" +
"<th style='border-bottom:1px solid #bbb'>Known Bugs</th>" +
"</tr>" +
"<tr>" +
"<td>" +
"The STIG Viewer currently has limited compatibility with" +
" UNIX/Linux systems. In order to run on a Linux system, the user" +
" must install Oracle's JRE or JDK. Depending on the Linux" +
" distribution, some features may work better than others.</br>" +
" - On Red Hat Enterprise Linux, the Checklist 'Get Target Data'" +
" button does not function.</br>" +
" - STIG Viewer does not run on Solaris 11.</br>" +
"</td>" +
"</tr>" +
"<tr style='height:20px'></tr>" +
"<tr>" +
"<th style='text-align:left;border-bottom:1px solid #bbb'>Table of Contents</th>" +
"</tr>" +
"<tr>" +
"<td>"+
"1000 - STIG Explorer tab Program Functions</br></br>" +

"1010 - Local Data Cache</br>" +
"1020 - Importing a STIG</br>" +
"1025 - Exporting a STIG</br>" +
"1030 - STIGs Panel</br>" +
"1040 - Filter Panel</br>" +
"1050 - Vuln Table</br></br>" +

"1500 � Preferences Menu Functions</br></br>" +
"1510 � Preferences General Tab</br>" +
"1520 � Preferences Checklist Tab</br></br>" + 

"2000 - Checklist tab Functions</br>" +
"</br>" +

"2010 - Opening a Checklist</br>" +
"2015 - Checklist Menu Options</br>" +
"2020 - Totals Panel</br>" +
"2030 - Target Data Panel</br>" +
"2035 � STIGs Panel</br>" +
"2040 - Technology Area Panel</br>" +
"2041 - Filter Panel</br>" +
"2045 - Vuln Table</br>" +
"2050 - General Information Panel</br>" +
"2051 - Vuln Information Panel</br>" +
"2052 - Finding Details and Comments Panels</br>" +
"</td>" +
"</tr>" +
"<tr style='height:15px'></tr>" +
"<tr>" +
"<th style='border-bottom:1px solid #bbb'>1000:STIG Explorer Program Functions </th>" +
"</tr>" +
"<tr>" +
"<td>"+
"<b>1010: Local Data Cache</b></br></br>" +

"STIG Viewer creates and maintains a Local Data Cache responsible" +
" for storing imported STIGs and program configurations. The Local" +
" Data Cache is created upon initialization of the program and may" +
" be deleted at any time. Upon deletion, the local data cache is" +
" recreated, saving further changes before next close.</br></br>" +

" If the Local Data Cache is unable to be created, a warning message" +
" will be presented to the user detailing that STIG Viewer is unable" +
" to save state between opening and closing.</br></br>" +

" In order to fully delete the Local Data Cache, go to:</br>" +
"Options->Delete Local Data Cache</br></br>" +

"<b>1020: Importing a STIG</b></br></br>" +

"File menu:</br>" +
"File->Import STIG</br></br>" +

"STIGs may be imported as a STIG XML File (.xml) file or as a STIG ZIP" +
" File (.zip) bundle. STIG Viewer fully supports importing DISA STIGs" + 
" that use XCCDF 1.1 or 1.2. Other STIGs may be imported with varying" +
" success.</br></br></br>" +


"<b>1025: Exporting a STIG</b></br></br>" +

"STIG Viewer is able to export the selected STIG(s) in three different" +
" formats: A webpage (.html), rich text document (.rtf), or a comma" +
" separated values file (.csv).</br></br>" +

"File menu:</br>" +
"Export->Webpage(.html)</br></br>" +

"File menu:</br>" +
"Export->Document(.rtf)</br></br>" +

"File menu:</br>" +
"Export->Spreadsheet(.csv)</br></br>" +

"STIG Spreadsheet(.csv) exports truncate element contents at 32700 characters, just" +
" shy of the maximum characters per cell value defined by Microsoft Excel.</br></br></br>" +

"<b>1030: STIGs Panel</b></br></br>" +

"The STIGs panel is responsible for selecting STIGs to be viewed by the" +
" STIG Viewer, as well as maintaining the STIGs held in the Local Data" +
" Cache. The visible columns of the STIGs list may be altered by selecting" +
" the plus sign in the upper right corner of the table, then selecting" +
" and deselecting the options shown.</br></br>" +

"There are two main forms of selection associated with the STIG panel," +
" highlighting and check marking. A highlighted selection is used for" +
" deletion purposes. A check marked STIG is automatically sent to be displayed" +
" along with the other checked STIGs. Additionally, check marked STIGs are" +
" those that are used when a checklist is created or an export option is" +
" chosen.</br></br>" +

"- Left clicking without holding down the ctrl or shift keys both checks" +
" (or unchecks) and highlights the given selection.</br></br>" +

"- Left clicking while the ctrl or shift key is pressed highlights" +
" (or de-highlights) STIGs only.</br></br>" +

"- Right clicking will highlight the given selection only and open up a" +
" menu with the options to 'Check All', 'Uncheck All', and" +
" 'Remove Highlighted STIG(s)'.</br></br>" +

"- The 'Remove Highlighted STIG(s)' option will delete any of those STIGs" +
" that are highlighted, regardless of their Check-mark status.</br></br>" +

"Below the table that lists the STIGs lies the profile selection drop down menu." +
" Selecting a profile will alter what vulnerabilities are sent to the vuln" +
" table by the checked STIGs based on the profile selected. The displayed" +
" profiles in the profile list correspond to the profiles listed in the" +
" selected STIGs.</br></br></br>" +


"<b>1040: Filter Panel</b></br></br>" +

"The STIGs are searchable by way of a filtered search list. This list is" +
" maintained on the left-hand side of the screen, beneath the STIGs panel.</br></br>" +

"The Filters applied in STIG Viewer will affect the current visible" +
" vulnerability list that is displayed in the center table. Successive" +
" additions to the table (Check Marking another STIG) will also be filtered" +
" based upon the current list of filters. Chosen filter words will be" + 
" highlighted in the display panels corresponding to the filter type.</br></br>" +

"The various filters, at this time, do not affect what selections are sent" +
" to the Export functions, nor checklist creation.</br></br>" +

"- Adding a filter:</br>" +
"Simply select a Filter from the drop down menu, input a" +
" keyword if necessary, select whether the filter will include or " +
" exclude the selection, finally, press the 'add' button.</br></br>" +

"- Removing a filter:</br>" +
"Highlight the desired filter in the list of current applied filters." +
" Multiple filters in this list can be highlighted by shift and or ctrl" +
" clicking entries. Press the 'Remove Filter(s)' button to remove" +
" those filters selected, or, press the 'Remove All Filters' button" +
" to remove all current filters.</br></br>" +


"The various types of filters and their corresponding elements searched:</br></br>" +

"Keyword</br>" +   	  
"- Searches most text fields in all vulns currently displayed, does not" +
" check the severity attribute</br></br>" +

"Rule Title</br>" +		  
"- Searches the Rule Title text of all vulns currently displayed</br></br>" +

"STIG ID</br>" +     	  
"- Searches the STIG ID of all vulns currently displayed</br></br>" +

"Rule ID</br>" +           
"- Searches the Rule ID of all vulns currently displayed</br></br>" +

"Vulnerability ID</br>" + 
"- Searches the Vul ID of all vulns currently displayed</br></br>" +

"IA Control</br>" +  	  
"- Searches the IA Control value(s) of all vulns currently displayed</br></br>" +

"CAT I</br>" +	    	  
"- Shows or hides currently displayed vulns that are considered CAT I's</br></br>" + 

"CAT II</br>" +	    	  
"- Shows or hides currently displayed vulns that are considered CAT II's</br></br>" +

"CAT III</br>" +	    	  
"- Shows or hides currently displayed vulns that are considered CAT III's</br></br>" +

"CCI</br>" +    	  
"- Searches CCI number, description and reference of currently displayed" +
" vulns</br></br></br>" +


"<b>1050: Vuln Table</b></br></br>" +

"To view a particular entry in the vuln table, simply select an entry in"  +
" the Vuln Table, the center table.</br></br>" +

"The selected vulnerability will populate the right hand of the screen that" +
" possibly consists of the 'General Information', 'Discussion', 'Fix Text'," + 
" 'Check Content', 'CCI', and 'Miscellaneous' panels. If a STIG does not"  +
" have information for a particular panel, the panel will not be displayed.</br></br>" +

"Like the STIGs panel, the Vuln Table's visible columns can be altered by" +
" selecting the various options brought up by clicking the plus sign in the" +
" top right corner of the table.</br></br>" +

"The available selections in the vuln table are affected by what is checked" +
" in the STIGs panel, and by what filters are applied by the Filter Panel.</br></br></br>" +


"</td>" + 
"</tr>" +

"<tr style='height:15px'></tr>" +

"<tr>" +
"<th style='border-bottom:1px solid #bbb'>1500 : Preferences Menu Functions</th>" +
"</tr>" +
"<td>"+
"<b>1510 � Preferences General Tab </b></br></br>" +

"Font Size</br>" +
"- To change the font size of STIG Viewer's display windows, input a number" +
" followed by enter. In the case of non-number input, the selection" +
" defaults to 14.</br></br>" +

"Font</br>" +
"- To change the style of STIG Viewer's display windows, choose a font from" +
" the dropdown menu.</br></br>" +

"Visual Style</br>" +
"- To change the overall appearance of STIG Viewer, select one of the options" +
" from the dropdown menu.</br></br>" +

"Output Logging to File</br>" +
"- When the output logging to file box is checked, STIG Viewer will" +
" output a file in the same directory as the .jar file called" +
" the "ActionLog". This file holds a recollection of actions taken" +
" by the user to aid in a debugging scenario. When this option" + 
" is not checked, STIG Viewer does not log its events, nor create" +
" the "ActionLog" file.</br></br></br>" +

"<b>1520 � Checklist General Tab </b></br></br>" +

"Color Selectors</br>" +
"- The checklist tab in the preferences menu has 5 color selection" +
" menus that correspond to each possible status of a vulnerability." +
" Changing the colors in the given selectors will accordingly change the" +
" color that is displayed by the center table when a status is given to" +
" a given vulnerability. The chosen colors are also reflected in the pie chart." +
" The pie chart 'Open' color reflects the color chosen for CAT I Statuses.</br></br></br>" +


"</td>" + 
"</tr>" +


"<tr style='height:15px'></tr>" +

"<tr>" +
"<th style='border-bottom:1px solid #bbb'>2000 : Checklist tab </th>" +
"</tr>" +
"<tr>" +
"<td>"+
"<b>2010: Opening a Checklist</b></br></br>" +

"There are a few options for opening a new Checklist. All are" +
" listed under the Checklist menu option given in the STIG Explorer." +
" All options, when successfully called, will open up and switch windows" +
" to the 'Checklist' tab.</br></br>" +

"Checklist->Open Checklist from File</br>" +
"- This option will open a checklist from file, Checklists 2.x variants" +
" of STIG Viewer should be able to be opened by STIG Viewer 2.5 and on, however," +
" checklists from 2.5 and on will not be able to be opened by previous versions.</br></br>" +

"Checklist->Import v1.2 Checklist</br>" +
"- A special compatibility option was designed for STIG Viewer 2.x that" +
" is able to open up checklists from STIG Viewer 1.2. *CAUTION* Once" + 
" overwritten, the checklist will not be able to be opened in STIG"  +
" Viewer 1.2 again.</br></br>" +

"Checklist->Create Checklist - Check Marked STIG(s)</br>" +
"- A new checklist will be created that consists of vulnerabilities from" +
" the STIGs that are currently checked in the STIGs Panel.</br></br></br>" + 


"<b>2012: Checklist Keyboard Shortcuts</b></br></br>" +

"There are four main keyboard shortcuts supported by a checklist tab other." +
" than those used to change vulnerability status (listed under section 2050)." +
" They are used by selecting the Checklist window once a Checklist has been" +
" created. Select the window by either tapping tab or clicking anywhere on it." +
" all four are control key based, in other words, press the Ctrl key followed " +
" by the key after the plus sign.</br></br>" +

"Ctrl + 1</br>" +
"Switch to the center table, use arrow keys to switch between entries and" +
" shortcuts listed under section 2050 to change their statuses.</br></br>" +

"Ctrl + 2</br>" +
"Switch to the Vuln Information window, use arrow keys to change tabs.</br></br>" +

"Ctrl + 3</br>" + 
"Switch to the Finding Details window.</br></br>" +

"Ctrl + 4</br>" +
"Switch to the Comments window.</br></br></br>" +


"<b>2015: Checklist Menu Options</b></br></br>" +

"The Checklist tab has three main menu items: File, Import, Export, and Options." +
" The options under File deal with saving the current checklist. The" +
" Import item deals with importing XCCDF results files to the Checklist."  +
" Export provides options for exporting a checklist to a different format.</br></br>" +

"File->Save Checklist</br>" +
"- If the checklist already represents a checklist file saved to the system," +
" this option will save the current checklist to that file. Otherwise," +
" the option will open up a 'save as' menu that allows the user to" +
" save the checklist to a checklist file on the system.</br></br>" +

"File->Save Checklist As</br>" +
"- 'Save Checklist As' allows the user to save the current checklist to" +
" a file of his or her choosing on the system that is running STIG viewer." +
" The checklist file may be opened at a later time or on a different instance" +
" of STIG Viewer using the 'Open Checklist from File' option in the"  +
" STIG Explorer tab.</br></br>" +

"Import->XCCDF Results File</br>" +
"- Import and apply an XCCDF Results file to the STIGs that were used" +
" to create the checklist. XCCDF Results will be mapped to their" + 
" corresponding STIG rules. If any XCCDF Results are imported that do not" +
" have a matching rule in the Checklist, a window will pop-up and display" +
" the offending rule ID's from the Results file. Supported XCCDF Result formats~" +
" 'HBSS ePO/PAA' and 'SPAWAR'.</br></br>" +

"Import->Checklist Data</br>"+
"- Import data from a saved checklist file into the current checklist."+
" This feature will be generally used to import data from a checklist" +
" that uses an older version of a STIG into a checklist that was created" +
" with the new version of the STIG.</br></br>" + 

"Export->Gen. CMRS Import File</br>" +
"- Takes the information that has been inputted into the checklist and creates" +
" a CMRS import file.</br></br>" +

"Export->Data Export(.csv)</br>" +
"- Takes the information that has been inputted into the checklist and creates" +
" a comma separated values file to hold the data.</br></br>" +

"Checklist .csv exports truncate element contents at 32700 characters, just" +
" shy of the maximum characters per cell value defined by Microsoft Excel.</br></br>" +

"Option->Prefereces</br>" +
"- Opens the STIG Viewer Preferences menu.</br></br></br>" +


"<b>2020: Totals Panel</b></br></br>" +

"The totals panel provides an easy way to visualize the current status" +
" of a system in regards to its compliance to a STIG. There are 4 tabs" +
" in the Totals Panel that allow the user to receive quick summaries"  +
" on system compliance based on rule severity. For each severity category," +
" the status totals of each applicable result are listed. The center vuln list" + 
" is updated based upon the tab selected.</br></br>" + 

"The Various Statuses:</br></br>" +

"Open</br>" + 
"- The rule has been observed as non-compliant on the target system.</br></br>" +

"Not Reviewed</br>" + 
"- The rule received no results from the Results file and was not tested.</br></br>" +

"Not a Finding</br>" +
"- The rule has been observed as compliant on the target system.</br></br>" +

"Not Applicable</br>" +
"- The rule was determined to not apply due to the nature of the requirement with" +
" consideration to the target system.</br></br>" +

"Each status is has its own color that is used by the pie chart and the center" +
" vuln table which will update based upon any change made to the checklist" +
" entries' statuses. The counts for each tab additionally will update in" + 
" response to the changing state of the checklist.</br></br></br>" +


"<b>2030: Target Data Panel</b></br></br>" +

"The Target Data Panel holds information that is used by a CMRS Import File," +
" namely the Computing/Non-Computing selection, Host Name, IP Address, MAC" +
" Address and Fully Qualified Domain Name text fields. These may be automatically" +
" filled in when an XCCDF Results file is imported, but may also be changed" +
" manually or by pressing the 'Get Host Data' button.</br></br>" +

"To note the role, choose one of the selection bubbles: Workstation, Member" +
" Server, or Domain Controller.</br></br>" + 

"The 'Web or Database STIG' check box will spawn the two text fields for Site" +
" and Instance input when the 'Web or Database STIG' check box is checked.</br></br></br>" +


"<b>2035: STIGs Panel</b></br></br>" +

"This panel holds a list of the current STIGs displayed in the checklist. The" +
" Checklist STIGs panel is almost exactly like the STIGs panel under the STIG Explorer" +
" tab. The checklist STIGs panel, however, does not have the profile dropdown and" +
" has an additional column, the score column.</br></br>" +

"The Score column updates after each change in vulnerability check status to"  +
" indicate the current 'correctness' of a given STIG. The score is calculated as"  +
" follows:</br></br>" +

"Open</br>" + 
"- Counts as a Failure and towards the total number of vulnerabilities</br></br>" +

" Not a Finding:</br>" +
"- Counts as a Pass and towards the total number of vulnerabilities</br></br>" +

" Not Reviewed:</br>" +
"- Counts as a Failure and towards the total number of vulnerabilities</br></br>" +

" Not Applicable:</br>" +
"- Does not count towards the total number of vulnerabilities</br></br>" +

"The score is equal to the number of 'passing' vulnerabilities divided by" +
" the total number of vulnerabilities.</br></br></br>" +


"<b>2040: Technology Area Panel</b></br></br>" +

"The purpose of the Technology Area panel is pretty simple. It includes a drop-" +
" down menu that allows the user to select the applicable 'Technology Area' for" +
" the checklist.</br></br></br>" +


"<b>2041: Filter Panel</b></br></br>" +

"The Checklist tab Filter Panel works just like the STIG Explorer Filter panel" +
" discussed in section 1030.</br></br></br>" +


"<b>2045: Vuln Table</b></br></br>" +

"The Center vuln table fulfills the same purpose as the center vuln table in the" +
" STIG Explorer, but does a couple things extra. In addition to populating the" + 
" panels in the right most quadrant, it has an additional status column that" +
" states the current status of the rule. The text will also change to a" + 
" corresponding color to the Status and Severity of the rule.</br></br></br>" +

"<b>2050: General Information Panel</b></br></br>" +

"Much like a few things in the Checklist tab, the General Information Panel is" +
" very similar to its STIG Explorer counterpart, but with additional features." +
" The most notable of these features is the ability to change the status" +
" and severity of individual or multiple rule(s) at the rule level.</br>" +
"</br>" +
"In order to change the status of a rule the user needs to only select one" +
" of the choice bubbles of the status that is desired for the rule(s) selected.</br>" +
"</br>" +
"Additionally to the ability to change the status of highlighted vulnerabilities" +
" via mouse, there are keyboard shortcuts that change status when pressed:</br>" +
"</br>" +
"'r' for 'Not Reviewed'</br></br>" +
"'o' for 'Open'</br></br>" +
"'n' for 'Not a Finding'</br></br>" +
"'x' for 'Not Applicable'</br>" +
"</br>" +
"In order to change the Severity, the user must select the Severity Override" +
" choice box and choose the desired severity. This action will bring up a" +
" 'justification' text input field that must be filled out in order to successfully" +
" change the severity of the given rule. Severity may only be changed one rule" +
" at a time.</br></br></br>" +


"<b>2051: Vuln Information Panel</b></br></br>" +

"The Vuln Information Panel holds a sub-window that has a number of tabs based"  +
" on the fields obtained from the STIGs selected for the Checklist. If a particular" +
" field is not present in a STIG, the tab will not show up.</br></br></br>" +


"<b>2052: Finding Details and Comments Panels</b></br></br>" +

"The Finding Details and Comments Panels provide an area for user inputted" +
" data.</br></br>" +  

"</td>" +
"</tr>" +
"<tr style='height:15px'></tr>" +

"</tbody>" +
"</table>" +
"</div>"
