07 January 2010 | 4,892 views

YASAT – Yet Another Stupid Audit Tool

YASAT (Yet Another Stupid Audit Tool) is a simple stupid audit tool. Its goal is to be as simple as possible with minimum binary dependencies (only sed, grep and cut).

It do many tests for checking security configuration issue or others good practice.

It checks many software configurations like:

  • Apache
  • PHP
  • kernel
  • MySQL
  • OpenVPN
  • Packages update
  • snmpd
  • tomcat
  • user accounting
  • vsftpd
  • xinetd

YASAT has been tested on:

  • Gentoo
  • Debian
  • Ubuntu
  • FreeBSD
  • OpenBSD

YASAT is licensed under GPLv3.

You can download YASAT here:

yasat-207.tar.gz

Or read more here.


Tags: , , , , , , , , , , ,
# Posted in: Countermeasures, Security Software | * 3 Comments


Recent in Countermeasures:
- Noted Chinese Hacker Wicked Rose Heading Antivirus Company Anvisoft
- HoneyDrive – Honeypots In A Box
- Microsoft Patches Critical Security Vulnerabilities In Windows, Office, IE, Exchange & SQL Server

Related Posts:
- DllHijackAuditor – Free Audit Tool For DLL Hijack Vulnerability
- SpikeSource Spike PHP Security Audit Tool
- xSQLScanner – Database Password Cracker & Security Audit Tool For MS-SQL & MySQL

Most Read in Countermeasures:
- AJAX: Is your application secure enough? - 117,887 views
- Password Hasher Firefox Extension - 115,958 views
- NDR or Backscatter Spam – How Non Delivery Reports Become a Nuisance - 57,469 views


3 Responses to “YASAT – Yet Another Stupid Audit Tool”

  1. GZero 7 January 2010 at 11:07 am Permalink

    This may sound odd but I THINK I’ve been waiting for something like this for a while…

  2. Philip 7 January 2010 at 11:24 am Permalink

    YASAT, is that real term ?

  3. Alex 12 January 2010 at 1:28 pm Permalink

    It has some bugs !

    I have a full custom apache conf file, and it hasn’t find that my tokens were in prod mode, and so on for many other configurations lines.

    But nice.

    Thx for the article.