07 January 2010 | 4,955 views

YASAT – Yet Another Stupid Audit Tool

Don't let a Dragon into your website!

YASAT (Yet Another Stupid Audit Tool) is a simple stupid audit tool. Its goal is to be as simple as possible with minimum binary dependencies (only sed, grep and cut).

It do many tests for checking security configuration issue or others good practice.

It checks many software configurations like:

  • Apache
  • PHP
  • kernel
  • MySQL
  • OpenVPN
  • Packages update
  • snmpd
  • tomcat
  • user accounting
  • vsftpd
  • xinetd

YASAT has been tested on:

  • Gentoo
  • Debian
  • Ubuntu
  • FreeBSD
  • OpenBSD

YASAT is licensed under GPLv3.

You can download YASAT here:

yasat-207.tar.gz

Or read more here.



Recent in Countermeasures:
- isowall – Completely Isolate A Device From The Local Network
- ThreadFix – Vulnerability Aggregation & Management System
- StegExpose – Steganalysis Tool For Detecting Steganography In Images

Related Posts:
- SpikeSource Spike PHP Security Audit Tool
- DllHijackAuditor – Free Audit Tool For DLL Hijack Vulnerability
- xSQLScanner – Database Password Cracker & Security Audit Tool For MS-SQL & MySQL

Most Read in Countermeasures:
- AJAX: Is your application secure enough? - 119,314 views
- Password Hasher Firefox Extension - 117,127 views
- NDR or Backscatter Spam – How Non Delivery Reports Become a Nuisance - 57,579 views

Low-cost VPS Hosting

3 Responses to “YASAT – Yet Another Stupid Audit Tool”

  1. GZero 7 January 2010 at 11:07 am Permalink

    This may sound odd but I THINK I’ve been waiting for something like this for a while…

  2. Philip 7 January 2010 at 11:24 am Permalink

    YASAT, is that real term ?

  3. Alex 12 January 2010 at 1:28 pm Permalink

    It has some bugs !

    I have a full custom apache conf file, and it hasn’t find that my tokens were in prod mode, and so on for many other configurations lines.

    But nice.

    Thx for the article.