AuditTAP 5.6: How good is your Ubuntu hardening? Do the quick check!

With the latest update, AuditTAP is becoming an attractive Linux tool. You can now use it with a popular Ubuntu version to check whether you are using a securely configured system.

First “real” hardening check for a Linux distribution

AuditTAP version 5.0 was an important milestone for our hardening tool. With it, we introduced a few new, trend-setting features. For example, we left the “Windows only” waters and supported popular Linux distributions such as Debian, Fedora, Ubuntu and Red Hat with the “Security Base Data” reports.

We are now continuing what we promised at the time: AuditTAP (ATAP for short) will successively be able to audit more Linux systems.

This is important, because the alternative operating system enjoys great popularity and is becoming increasingly common in the enterprise field. And it is also quite vulnerable. Professional Linux system hardening is therefore indispensable, especially for companies!

The latest version of AuditTAP enables you to find vulnerabilities in the Secure Configuration quickly.

What exactly does AuditTAP 5.6 offer Ubuntu users?

With its CIS benchmarks, the Center for Internet Security provides very good recommendations on how to securely configure (“harden”) your Windows systems. These standards are an essential part of AuditTAP.

For AuditTAP 5.6 we have also adopted the CIS benchmarks for two Ubuntu versions. Specifically, this is CIS Ubuntu 1.1.0 for Ubuntu 20.04 and Ubuntu 22.4.

For this Linux distributions, AudiTAP now generates complete hardening reports based on the current standards of the Center for Internet Security.

For other Ubuntu versions as well as for Red Hat and Fedora systems, our free tool continues – for the time being – to generate the “Linux Security Base Data” reports.

Excerpt of how the new Hardening Report based on the CIS benchmarks for Ubuntu 20.4 looks in AuditTAP 5.6. (Click on the image to see a larger version)
Excerpt of how the new Hardening Report based on the CIS benchmarks for Ubuntu 20.4 looks in AuditTAP 5.6. (Click on the image to see a larger version)

Are there any other improvements?

Yes. Among other things, the ATAP now offers checks for Windows 10, Windows Server 2016, Windows Server 2019 and Windows Server 2022 according to the latest CIS benchmarks (version 2.0.0). The “DomainController” (DC) role is also checked here.
_______________________________________________

Tip: This is how a DomainController report is generated:

Save-ATAPHtmlReport -ReportName "Microsoft Windows Server 2022 DC"

Details can be found in the corresponding GitHub documentation at our AuditTAP project.

_______________________________________________

Furthermore, our developers have fine-tuned a few functions and eliminated bugs. You can see a detailed overview of the features and fixes of ATAP version 5.6 in the release notes on GitHub, the one from AuditTAP 5.6.1 is available here. As always, you can download the latest version free of charge via GitHub and use it afterwards without any further licence fees.

Do you need help with your system hardening audits?

Do you have questions about AuditTAP? Or do you need support with audits and automated system hardening? Contact us without obligation and we will get back to you as soon as possible.

Send us a mail!

 

Leave a Reply