Open source security auditing tool to search and dump system configuration.

Description   |    Requirements   |    Output   |    Parameters   |    Reports   |    Other   |    License   |    Wiki

_{Created by trimstray and contributors}

---

Description

Otseca is a open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.

The basic goal is to get as much information about the scanned system as possible for later analysis. Otseca contains many predefined commands, however, nothing prevents you from creating your own according to your needs. In addition, it automates the entire information gathering process.

After the scan finishes, a report is generated to examine specific nooks of the system.

Requirements

This tool working with:

• GNU/Linux (testing on Debian and CentOS)
• Bash (testing on 4.4.19)

Also you will need root access.

Output

An exemplary result of the process of collecting information from the local system:

Parameters

Below is a list of available options:

  Usage:
    otseca <option|long-option>

  Examples:
    otseca --help
    otseca --format html
    otseca --format html --ignore-failed
    otseca --format raw-html --task system,network

  Options:
        --help                      show this message
     -f|--format <key>              set output format (key: html/raw-html)
     -t|--tasks <key>               set specific task to do
                                    (key: system, fs, permissions, services, network, other)
        --ignore-failed             do not exit with nonzero on commands failed

Reports

Otseca generates reports in html (js, css and other) or raw-html (pure html) formats.

Default path for reports is {project}/data/output directory.

Main page (index.html)

It's the main file which contains a list of reports such as system or network.

Tasks reports

The report that can be performed consists of the following sections (stacks):

• system - dump info from system commands, eg. sysctl -a, (output file: system.all.log.html)
• filesystem - dump info about files and directories layer, eg. cat /etc/hosts.allow, (output file: filesystem.all.log.html)
• permissions - dump info about permissions, eg. find / -nouser -o -nogroup -print, (output file: permissions.all.log.html)
• services - dump info about system services, eg. ntpq -p, (output file: services.all.log.html)
• network - dump info from network layer, eg. netstat -tunap, (output file: network.all.log.html)
• other - all other, also user tasks, eg. yum list installed, (output file: other.all.log.html)

HTML reports consist of the following blocks:

Other

Contributing

See this.

Project architecture

See this.

License

GPLv3 : http://www.gnu.org/licenses/

Free software, Yeah!