Thursday, May 27, 2010

Open-Audit

what kind of hardware specs comprise the boxes on my network?  namely RAM, CPU, hard disk space, etc.

for answers to those questions and more, turn to our new favorite auditing system:  Open-Audit.

This took a bit of finagling, but once setup, we were most happy with the results.  What took me a few hours to figure out and document has been distilled to a setup that should take ~15 minutes.  Enjoy!

==============================================================


SETUP://

install XAMPP:  http://www.apachefriends.org/en/xampp-windows.html and accept all the defaults during the setup routine

if the machine you are installing to is already running a websever (eg IIS), you will need to change the port before starting up the service by modifying:

C:\xampp\apache\conf\httpd.conf

start up both APACHE & MYSQL using the XAMPP control panel

-Change all the port 80 --> 8080 or something

download Open-Audit and extract the meat to c:\xampp\htdocs\openaudit  (the end result--you should see a ton of PHP files in this folder)

open a web browser to:  http://localhost:8080/openaudit/setup.php

-just click next all the way through

==============================================================

CONFIGURE AUDIT://

edit C:\xampp\htdocs\openaudit\scripts\audit.config.  look for the following lines and modify appropriately:

'
' Standard audit section
'
audit_location = "l"
audit_host="http://SERVERNAME:8080"

audit_local_domain = "y"
'
local_domain = "LDAP://Domain.local"
'
' Nmap section
'
nmap_tmp_cleanup = true           ' Set this false if you want to leave the tmp files for analysis in your tmp folder
nmap_subnet = "172.22.4.."            ' The subnet you wish to scan
nmap_subnet_formatted = "172.022.004."    ' The subnet padded with 0's

==============================================================

INITIATE AUDIT://

C:\xampp\htdocs\openaudit\scripts> CSCRIPT audit.vbs

2 comments:

Anonymous said...

Dear,
how can i run scipts in client pc.
i have tried many times not working...

Anonymous said...

Dear,
how can i run scipts in client pc.
i have tried many times not working...