YASAT – Yet Another Stupid Audit Tool
YASAT (Yet Another Stupid Audit Tool) is a simple stupid audit tool. Its goal is to be as simple as possible with minimum binary dependencies (only sed, grep and cut).
It do many tests for checking security configuration issue or others good practice.
It checks many software configurations like:
- Apache
- PHP
- kernel
- MySQL
- OpenVPN
- Packages update
- snmpd
- tomcat
- user accounting
- vsftpd
- xinetd
YASAT has been tested on:
- Gentoo
- Debian
- Ubuntu
- FreeBSD
- OpenBSD
YASAT is licensed under GPLv3.
You can download YASAT here:
Or read more here.
Tweet
Posted in: 
Recent in Countermeasures:
- No BEAST Fix From Microsoft In December Patch Tuesday – But They Fixed Duqu Bug
- sslyze – Fast and Full-Featured SSL Configuration Scanner
- Twitter Purchases WhisperCore – Full Disk Encryption For Android Phones
Related Posts:
- DllHijackAuditor – Free Audit Tool For DLL Hijack Vulnerability
- SpikeSource Spike PHP Security Audit Tool
- Skavenger – source code auditing tool!
Most Read in Countermeasures:
- AJAX: Is your application secure enough? - 115,589 views
- Password Hasher Firefox Extension - 110,179 views
- NDR or Backscatter Spam – How Non Delivery Reports Become a Nuisance - 55,186 views
This may sound odd but I THINK I’ve been waiting for something like this for a while…
YASAT, is that real term ?
It has some bugs !
I have a full custom apache conf file, and it hasn’t find that my tokens were in prod mode, and so on for many other configurations lines.
But nice.
Thx for the article.