Yasat v1.70a - Yet Another Stupid Audit Tool

In: Configurations checks , Forensics , Information Gathering , Local auditing , YASAT

24 December 2009

YASAT (Yet Another Stupid Audit Tool) is a simple stupid audit tool. Its goal is to be as simple as possible with minimum binary dependencies (only sed, grep and cut).

It do many tests for checking security configuration issue or others good practice.

It checks many software configurations like:

Apache
PHP
kernel
mysql
openvpn
Packages update
snmpd
tomcat
user accounting
vsftpd
xinetd

YASAT is licensed under GPLv3

MD5SUM 9dd26de0ab213ded1a1a59cb7afabd07
SHA1SUM 3f40247863025ece397b4d2136ebd037271940c3

More information: here

Thanks dtc for sharing this tool with us.

Post scriptum

Download Yasat alpha 1.70

Compliance Mandates

Forensics :
PCI DSS 10.2, 12.9, A.1.4*, SOX DS7, HIPAA 164.308(a)(1) and (a)(6), FISMA IR-7, ISO 27001/27002 13.2.1, 13.2.3
*Shared Hosting Providers Only

Configurations checks	10 May 2010 : WebTest 1.2.1 - Testing Web Application with Python 1 May 2010 : Lansweeper v4.0 released 1 May 2010 : Sysinternal AccessChk v5.0 released 1 May 2010 : Spiceworks v4.7 build 50667 released 28 April 2010 : NSIA (Network System Integrity Analysis) v0.8.99 released
Forensics	12 May 2010 : Xplico v0.5.7 released 25 April 2010 : Process Monitor v2.9 released 22 April 2010 : Xplico v0.5.6: VoIP (SIP & RTP) released 8 April 2010 : log2timeline updated to v0.43 3 April 2010 : Focus on Zero Wine Tryouts Malware Analyzer Alpha 2 release
Information Gathering	12 May 2010 : MetaGoofil v1.4b released 1 May 2010 : WhatWeb just updated to v0.4.2 1 May 2010 : OpenDLP v0.1 released 29 April 2010 : WhatWeb v0.4.1 - released 26 April 2010 : (update) Foca v2.0.1: in the wild
Local auditing	11 May 2010 : iScanner v0.5 released - Malicious codes scanner 22 April 2010 : OpenSCAP v0.5.9 released 30 March 2010 : Buck Security - Checks for Debian Linux - v0.5 released 29 March 2010 : PDFResurrect v0.10 released 26 March 2010 : Flint the Firewall Rules Checkup Scanner updated to v1.0.4
YASAT	24 December 2009 : Yasat v1.70a - Yet Another Stupid Audit Tool