07 January 2010 | 4,991 views

YASAT – Yet Another Stupid Audit Tool

Cyber Raptors Hunting Your Data?

YASAT (Yet Another Stupid Audit Tool) is a simple stupid audit tool. Its goal is to be as simple as possible with minimum binary dependencies (only sed, grep and cut).

It do many tests for checking security configuration issue or others good practice.

It checks many software configurations like:

  • Apache
  • PHP
  • kernel
  • MySQL
  • OpenVPN
  • Packages update
  • snmpd
  • tomcat
  • user accounting
  • vsftpd
  • xinetd

YASAT has been tested on:

  • Gentoo
  • Debian
  • Ubuntu
  • FreeBSD
  • OpenBSD

YASAT is licensed under GPLv3.

You can download YASAT here:

yasat-207.tar.gz

Or read more here.

Advertisements



Recent in Countermeasures:
- Egress-Assess – Test Network Egress Data Detection
- Just-Metadata – Gathers & Analyse IP Address Metadata
- Agile Security – How Does It Fit Into A World Of Continuous Delivery

Related Posts:
- SpikeSource Spike PHP Security Audit Tool
- DllHijackAuditor – Free Audit Tool For DLL Hijack Vulnerability
- xSQLScanner – Database Password Cracker & Security Audit Tool For MS-SQL & MySQL

Most Read in Countermeasures:
- AJAX: Is your application secure enough? - 119,640 views
- Password Hasher Firefox Extension - 117,393 views
- NDR or Backscatter Spam – How Non Delivery Reports Become a Nuisance - 57,625 views

Low-cost VPS Hosting

3 Responses to “YASAT – Yet Another Stupid Audit Tool”

  1. GZero 7 January 2010 at 11:07 am Permalink

    This may sound odd but I THINK I’ve been waiting for something like this for a while…

  2. Philip 7 January 2010 at 11:24 am Permalink

    YASAT, is that real term ?

  3. Alex 12 January 2010 at 1:28 pm Permalink

    It has some bugs !

    I have a full custom apache conf file, and it hasn’t find that my tokens were in prod mode, and so on for many other configurations lines.

    But nice.

    Thx for the article.