The Linux Security Auditing Tool (LSAT) is a post install security auditor for Linux/Unix. It checks many system configurations and local network settings on the system for common security/config errors and for packages that are not needed. It (for now) works under Linux (x86: Gentoo, RedHat, Debian, Mandrake; Sparc: SunOS (2.x), Redhat sparc, Mandrake Sparc; Apple OS X) Latest updates: Changelog: 06/16/2019 Package: 06/16/2019 Latest version: 0.9.8.6 Download links are at the bottom of this page. Click here to go there now. LSAT in Training: Kenvision Techniks Ltd Ethical Hacking & Countermeasures Training Program includes LSAT. The EC-Council Certified Ethical Hacking uses LSAT in the training course. Here are a few pdfs about the EC-Council training: CNDA Brochure, Ethical Hacking and Countermeasures Specialist. NEWS: 12/07/2018: Been a while since I have updated, but there are a few bugfixes that were added. Also, distros are moving things around, and the code was getting behind. A number of items in that regard were fixed. Coming soon, new network checks in early 2019. Check the changelog for more details. NOTE a few books on ethical hacking and computer security mention LSAT. (Yes these are affiliate links, yes I would get paid $0.02 if you purchased one) By EC-Council - Ethical Hacking and Countermeasures: Attack Phases: 1st (first) EditionEthical Hacking and Countermeasures: Linux, Macintosh and Mobile Systems (Ethical Hacking and Countermeasures: C/ E H: Certified Ethical Hacker)
Computer and Information Security Handbook, Second Edition
Linux (Hacking Exposed)
Thre is a demo page of the lsat -w output... Here it is. NOTE: This is merely an auditing tool, and does not impose any form of security on the box itself. I take no responsibility for its use/reliability/blah/blah. Again: This software does not modify anything (yet) to make your box more secure, it is an auditor. It will report possible security flaws in the configuration of the system. Special note: Please email me with bugs and the like. Also, please email me with suggestions, etc. It is your input which will make this software better. Thanks. There is now a (somewhat small) FAQ. There is now an INSTALL file. Check the changelog for more details. What is does now: Updated 12/07/2018 See README.modules for list and more. The TODO list is now a seperate page. The changelog will show revision changes or bugfixes as they come about. There is now a README included in the package. There is now a README.modules included in the package. Current Version is 0.9.8.6: tarred-gzipped w/md5sum 6c1924001ddac03b7c0e5eec589c47b7 zipped w/md5sum: 305259ac43e4c0318a31a4794a5038a0 Past and present releases are here, along with a list of their respective md5sums. This source code is in C and has been tested on a linux 2.2 and 2.4 kernel. The latest release has been tested on Gentoo and should work on Solaris, Debian, AIX, and almost all linux distros. This software is licensed under the GNU General Public License. Read it here.