VMware Harden

Connects to vCenter environments to run compliance scans against six built-in baselines: CIS ESXi 8.0, vSphere SCG v8, Chinese GB/T 22239 Level 3, PCI-DSS 4.0, EU NIS2, and BSI IT-Grundschutz. Exposes six read-only MCP tools for listing baselines, checking violations, viewing drift events, and running scans across hosts, VMs, datastores, and NSX DFW rules. Built on a DuckDB-backed digital twin that tracks configuration state. Includes an LLM-powered remediation advisor that generates fix suggestions for critical findings. Reach for this when you need programmatic access to VMware compliance data during security reviews or when building automation around 87 hardening rules. Part of the broader vmware-* skill family for infrastructure operations.