Yasat v1.70a - Yet Another Stupid Audit Tool

YASAT (Yet Another Stupid Audit Tool) is a simple stupid audit tool. Its goal is to be as simple as possible with minimum binary dependencies (only sed, grep and cut).

It do many tests for checking security configuration issue or others good practice.

It checks many software configurations like:

  • Apache
  • PHP
  • kernel
  • mysql
  • openvpn
  • Packages update
  • snmpd
  • tomcat
  • user accounting
  • vsftpd
  • xinetd

YASAT is licensed under GPLv3

  • MD5SUM 9dd26de0ab213ded1a1a59cb7afabd07
  • SHA1SUM 3f40247863025ece397b4d2136ebd037271940c3

More information: here

Thanks dtc for sharing this tool with us.

Post scriptum

Compliance Mandates

  • Forensics :

    PCI DSS 10.2, 12.9, A.1.4*, SOX DS7, HIPAA 164.308(a)(1) and (a)(6), FISMA IR-7, ISO 27001/27002 13.2.1, 13.2.3
    *Shared Hosting Providers Only


Comments

Related Articles

Configurations checks
Forensics
Information Gathering
Local auditing
YASAT