YASAT (Yet Another Stupid Audit Tool) is a simple stupid audit tool. Its goal is to be as simple as possible with minimum binary dependencies (only sed, grep and cut) Second goal is to document each test with maximum information and links to official documentation. It do many tests for checking security configuration issue or others good practice. It checks many software configurations like:
- Apache
- Bind DNS
- CUPS
- PHP
- kernel configuration
- mysql
- network configuration
- openvpn
- Packages update
- samba
- snmpd
- squid
- syslog
- tomcat
- user accounting
- vsftpd
- xinetd