Otseca is a open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.
The basic goal is to get as much information about the scanned system as possible for later analysis. Otseca contains many predefined commands, however, nothing prevents you from creating your own according to your needs. In addition, it automates the entire information gathering process.
After the scan finishes, a report is generated to examine specific nooks of the system.
This tool working with:
- GNU/Linux (testing on Debian and CentOS)
- Bash (testing on 4.4.19)
Also you will need root access.
An exemplary result of the process of collecting information from the local system:
Below is a list of available options:
Usage:
otseca <option|long-option>
Examples:
otseca --help
otseca --format html
otseca --format html --ignore-failed
otseca --format raw-html --task system,network
Options:
--help show this message
-f|--format <key> set output format (key: html/raw-html)
-t|--tasks <key> set specific task to do
(key: system, fs, permissions, services, network, other)
--ignore-failed do not exit with nonzero on commands failed
Otseca generates reports in html (js, css and other) or raw-html (pure html) formats.
Default path for reports is
{project}/data/output
directory.
It's the main file which contains a list of reports such as system or network.
The report that can be performed consists of the following sections (stacks):
- system - dump info from system commands, eg.
sysctl -a
, (output file: system.all.log.html) - filesystem - dump info about files and directories layer, eg.
cat /etc/hosts.allow
, (output file: filesystem.all.log.html) - permissions - dump info about permissions, eg.
find / -nouser -o -nogroup -print
, (output file: permissions.all.log.html) - services - dump info about system services, eg.
ntpq -p
, (output file: services.all.log.html) - network - dump info from network layer, eg.
netstat -tunap
, (output file: network.all.log.html) - other - all other, also user tasks, eg.
yum list installed
, (output file: other.all.log.html)
HTML reports consist of the following blocks:
See this.
See this.
GPLv3 : http://www.gnu.org/licenses/
Free software, Yeah!