YASAT - A Simple Security Auditing Tool

YASAT (Yet Another Stupid Audit Tool) is a simple audit tool with minimum binary dependencies (only sed, grep and cut).

It documents each test with maximum information and links to official documentation.

Apache vhost tree

It checks many software configurations like: 
  • Apache
  • Bind DNS
  • CUPS
  • PHP
  • kernel configuration
  • mysql
  • network configuration
  • openvpn
  • Packages update
  • samba
  • snmpd
  • squid
  • syslog
  • tomcat
  • user accounting
  • vsftpd
  • xinetd

YASAT has been tested on:
  • Gentoo
  • Debian
  • Ubuntu
  • FreeBSD
  • OpenBSD
  • RedHat
  • CentOS
  • ArchLinux


Simply untar the YASAT tarball:
tar xvzf yasat-releasenumber.tar.gz
Change directory to YASAT directory:
cd yasat
And type:

Basic output

No comments

Powered by Blogger.