Category Archives: IT Audit

ACLight – Advanced Privileged Accounts Discovery

ACLight is a tool for discovering privileged accounts through advanced ACLs analysis (objects’ ACLs - Access Lists, aka DACL\ACEs).

PingCastle – Active Directory Security Assessment Tool

PingCastle is a tool designed to assess quickly the Active Directory security level with a methodology based on risk assessment and a maturity framework.

LUNAR – UNIX Security Auditing Tool

LUNAR Lockdown UNix Auditing and Reporting is a script that generates a scored audit report of a Unix host's security. It is based on the CIS and other frameworks.

WallParse Firewall Audit Tool – Firewall Config Analyzer

WallParse Firewall Audit Tool is a firewall audit tool for Cisco ASA firewalls. It parses configuration files from Cisco ASA and there is also experimental support for Fortigate firewall CSV export files.

Lynis – Security Auditing Tool for UNIX-based Systems

Lynis is a security auditing for system based on UNIX like Linux, macOS, BSD, and others. It performs an in-depth security scan and runs on the system itself.

SEC-AUDIT – PowerShell Script for Security Configuration Audit

SEC-AUDIT is a powershell script that checks for various security settings / controls / policies applied on the host machine.

SekChek Local – Audit Active Directory and Member Servers

SekChek Local is a tool that you can use to audit Active Directory domains and member servers running Microsoft Windows.