Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Vulnerability Development: RE: Linux free software auditing

RE: Linux free software auditing

From: Ronen Gottlib <ronen_at_xpert.com>
Date: Thu, 1 Sep 2005 11:14:00 +0200

Hi.

You can check the Center for Internet Security, www.cisecurity.com.

They have great benchmarks/tools, among them for Linux too.

--Snip--

CIS_RHLinux_Benchmark_v1.0.3.pdf - the Benchmark document contains detailed
instructions for implementing the steps necessary for CIS Level-I security
on Red Hat Linux systems.

cis_score_tool_linux_v1.6.8.sh.gz a Host-based Scoring Tool scores the
security of a system against the Benchmark and creates a variance report.
This package also contains the benchmark PDF.

--snip--

Beside that, the Nessus security scanner can also do the trick.

Ronen Gootlib, CISSP
IT Security Consultant
Xpert-One.

-----Original Message-----
From: anceky_at_yahoo.com.br [mailto:anceky_at_yahoo.com.br]
Sent: г 31 аевеси 2005 14:52
To: vuln-dev_at_securityfocus.com
Subject: Linux free software auditing

Can anyone tell me some references (sites, articles) about Linux free
software auditing ?

I need procedures, tools, tips to analyse the software security (source and
binary format) and avoid malicious behaviour like not authorized network
connections, suspect syscalls, ...
 
Thanks.

  • application/x-pkcs7-signature attachment: smime_p7s
Received on Sep 05 2005
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos