|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
RE: Linux free software auditing
From: Ronen Gottlib (ronen
xpert.com)
Date: Thu Sep 01 2005 - 04:14:00 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hi.
You can check the Center for Internet Security, www.cisecurity.com.
They have great benchmarks/tools, among them for Linux too.
--Snip--
CIS_RHLinux_Benchmark_v1.0.3.pdf - the Benchmark document contains detailed
instructions for implementing the steps necessary for CIS Level-I security
on Red Hat Linux systems.
cis_score_tool_linux_v1.6.8.sh.gz a Host-based Scoring Tool scores the
security of a system against the Benchmark and creates a variance report.
This package also contains the benchmark PDF.
--snip--
Beside that, the Nessus security scanner can also do the trick.
Ronen Gootlib, CISSP
IT Security Consultant
Xpert-One.
-----Original Message-----
From: ancekyyahoo.com.br [mailto:ancekyyahoo.com.br]
Sent: г 31 аевеси 2005 14:52
To: vuln-devsecurityfocus.com
Subject: Linux free software auditing
Can anyone tell me some references (sites, articles) about Linux free
software auditing ?
I need procedures, tools, tips to analyse the software security (source and
binary format) and avoid malicious behaviour like not authorized network
connections, suspect syscalls, ...
Thanks.
- application/x-pkcs7-signature attachment: smime.p7s
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]