Our free Audit Test Automation Package, AuditTAP or ATAP for short, checks the system hardening status of your operating systems, web servers and applications.
What is the AuditTAP?
The AuditTAP modules check various standard products for the configuration of important and relevant security settings. The references that are audited against are fundamentally established and proven security standards – for example, the hardening recommendations and configuration specifications of:
-
- DISA (Defense Information Systems Agency)
- CIS (Center for Internet Security)
- BSI (German Federal Office for Information Security)
- ACSC (Australian Cyber Security Center)
- Vendor recommendations, e.g. from Microsoft
With AuditTAP you can quickly and easily create a simple and clear HTML-based documentation of your systems.
AuditTAP: Features
-
- Do your products comply with the latest security configuration recommendations?
- Is the documentation of your IT systems available?
- What is the compliance status of the settings?
Our AuditTAP reports answer these and other questions quickly and easily.
AuditTAP performs an automated audit by checking up to several hundred configuration settings, depending on the product. Among other things, it checks the algorithms and keys used, the location of log data, the use of TLS 1.2 (or higher), the services activated or existing, separate service accounts.
As a result of the audit Audit Test Automation Package generates a report in HTML format. In this report, you can see which settings comply with the recommendations and which do not.
Audits compliant to the General Data Protection Regulation (GDPR)
The AuditTAP also offers a Windows 10 GDPR report. In this report, more than 100 Windows 10 settings are checked for their data protection compliance.
Which products are supported?
Currently, you can use the AuditTAP for the following products and reports:
| Report | DISA | CIS | Microsoft | BSI | ACSC |
|---|---|---|---|---|---|
| Debian 10 | – | – | – | – | – |
| Fedora 35 | – | – | – | – | – |
| Google Chrome | V1R15 | 2.0.0 | – | – | – |
| Mozilla Firefox | V4R24 | 1.0.0 | – | – | – |
| Microsoft Edge | – | – | 85 | – | – |
| Microsoft Internet Explorer 11 | V1R16 | 1.0.0 | 2004 | – | – |
| Microsoft IIS10 | – | 1.1.0 | – | – | – |
| Microsoft Office 2016 Excel | V1R2 | – | – | – | – |
| Microsoft Office 2016 Outlook | V1R2 | – | – | – | – |
| Microsoft Office 2016 PowerPoint | V1R1 | – | – | – | – |
| Microsoft Office 2016 SkypeForBusiness | V1R1 | – | – | – | – |
| Microsoft Office 2016 Word | V1R1 | – | – | – | – |
| Microsoft Office 2016 | – | 1.1.0 | – | – | – |
| Microsoft SQL Server 2016 | – | 1.0.0 | – | – | – |
| Microsoft Windows 7 | – | 3.1.0 | – | – | – |
| Microsoft Windows 10 | V1R16 | 1.11.0 | 20H2 | SiM-08202, SiSyPHuS Version March 2021 (HD, ND, NE, Logging) | 10.2021 |
| Microsoft Windows 10 GDPR | – | – | 16082019 | V1.1 | – |
| Microsoft Windows 10 BSI | – | – | – | SiM-08202, SiSyPHuS Version March 2021 (HD, ND, NE, Logging) | – |
| Microsoft Windows 11 | – | 1.0.0 | FINAL | – | – |
| Microsoft Windows Server 2012 R2 | – | 2.4.0 | – | – | – |
| Microsoft Windows Server 2016 | V1R6 | 1.2.0 | FINAL | – | – |
| Microsoft Windows Server 2016 DC | V1R6 | 1.2.0 | FINAL | – | – |
| Microsoft Windows Server 2019 | V1R2 | 1.2.1 | FINAL | – | – |
| Microsoft Windows Server 2019 DC | V1R2 | 1.1.0 | FINAL | – | – |
| Microsoft Windows Server 2022 | – | 1.0.0 | FINAL | – | – |
| Red Hat Enterprise Linux 8 | – | – | – | – | – |
| Ubuntu 20.04 | – | – | – | – | – |
Note: You can also find an always up-to-date overview on the GitHub page of AuditTAP.
AuditTAP: Download & Installation
You can download the Audit Test Automation Package (AuditTAP) for freefrom Github and use it without any restrictions. Here you can also get detailed information about the product, for example for installation and setup.
How to use the AuditTAP?
This tutorial video shows you how to download, install and start the AuditTAP:
