您的位置:360文档中心› linux安全检查脚本

linux安全检查脚本

--将txt改为vbs即可,在securecrt执行

#$language="VBScript"
#$interface="1.0"
Sub main
crt.Screen.Send "uname -a" & chr(13)
crt.sleep(3000)
crt.Screen.Send "lsb_release -a" & chr(13)
crt.sleep(3000)
crt.Screen.Send "ifconfig -a" & chr(13)
crt.sleep(3000)
crt.Screen.Send "netstat -ar" & chr(13)
crt.sleep(3000)
crt.Screen.Send "netstat -anp| grep LISTEN " & chr(13)
crt.sleep(3000)
crt.Screen.Send "ps -ef" & chr(13)
crt.sleep(3000)
crt.Screen.Send "ls -l /etc/environment" & chr(13)
crt.sleep(3000)
crt.Screen.Send "ls -l /etc/hosts" & chr(13)
crt.sleep(3000)
crt.Screen.Send "ls -l /etc/hosts.equiv " & chr(13)
crt.sleep(3000)
crt.Screen.Send "ls -l /etc/profile" & chr(13)
crt.sleep(3000)
crt.Screen.Send "ls -l /etc/security" & chr(13)
crt.sleep(3000)
crt.Screen.Send "ls -l /etc/syslog.conf" & chr(13)
crt.sleep(3000)
crt.Screen.Send "ls -l /etc/security/audit" & chr(13)
crt.sleep(3000)
crt.Screen.Send "ls -l /etc/security/limits" & chr(13)
crt.sleep(3000)
crt.Screen.Send "ls -l /etc/sercurity/group" & chr(13)
crt.sleep(3000)
crt.Screen.Send "ls -l /etc/sercurity/profile" & chr(13)
crt.sleep(3000)
crt.Screen.Send "ls -l /etc/sercurity/failedlogin" & chr(13)
crt.sleep(3000)
crt.Screen.Send "ls -l /etc/security/passwd" & chr(13)
crt.sleep(3000)
crt.Screen.Send "ls -l /var/adm/sulog" & chr(13)
crt.sleep(3000)
crt.Screen.Send "ls -l /var/adm/wtmp" & chr(13)
crt.sleep(3000)
crt.Screen.Send "rpm -qa" & chr(13)
crt.sleep(9000)
crt.Screen.Send "cat /etc/passwd" & chr(13)
crt.sleep(3000)
crt.Screen.Send "rpm -qa | grep patch" & chr(13)
crt.sleep(3000)
crt.Screen.Send "cat /etc/group" & chr(13)
crt.sleep(3000)
crt.Screen.Send "iptables -L -n" & chr(13)
crt.sleep(3000)
crt.Screen.Send "cat /etc/shadow" & chr(13)
crt.sleep(3000)
crt.Screen.Send "cat /etc/login.defs" & chr(13)
crt.sleep(3000)
crt.Screen.Send "cat /etc/pam.d/su" & chr(13)
crt.sleep(3000)
crt.Screen.Send "cd /etc/xinetd.d" & chr(13)
crt.sleep(3000)
crt.Screen.Send "cat telnet" & chr(13)
crt.sleep(3000)
crt.Screen.Send "cat /etc/services" & chr(13)
crt.sleep(3000)
crt.Screen.Send "ps -ef |grep telnet " & chr(13)
crt.sleep(3000)
crt.Screen.Send "more /var/log/sucure | grep refused " & chr(13)
crt.sleep(3000)
crt.Screen.Send "ps -ef | grep auditd " & chr(13)
crt.sleep(3000)
crt.Screen.Send "service syslog status " & chr(13)
crt.sleep(3000)
crt.Screen.Send "service audit status " & chr(13)
crt.sleep(3000)
crt.Screen.Send "ps -ef |grep ssh " & chr(13)
crt.sleep(3000)
crt.Screen.Send "netstat -anp|grep 23" & chr(13)
crt.sleep(3000)
crt.Screen.Send "cat /etc/syslog.conf" & chr(13)
crt.sleep(3000)
crt.Screen.Send "grep "@priv-ops" /etc/audit/filter.conf" & chr(13)
crt.sleep(3000)
crt.Screen.Send "grep "@mount-ops" /etc/audit/filter.conf" & chr(13)
crt.sleep(3000)
crt.Screen.Send "grep "@system-ops" /etc/audit/filter.conf" & chr(13)
crt.sleep(3000)
crt.Screen.Send "ls -la /var/log/audit.d" & chr(13)
crt.sleep(300

0)
crt.Screen.Send "cd /var/log" & chr(13)
crt.sleep(3000)
crt.Screen.Send "ls -la" & chr(13)
crt.sleep(3000)
crt.Screen.Send "cat /etc/hosts" & chr(13)
crt.sleep(3000)
crt.Screen.Send "cat /etc/hosts.allow" & chr(13)
crt.sleep(3000)
crt.Screen.Send "cat /etc/hosts.deny" & chr(13)
crt.sleep(3000)
crt.Screen.Send "cd /etc" & chr(13)
crt.sleep(3000)
crt.Screen.Send "ls -la" & chr(13)
crt.sleep(3000)
crt.Screen.Send "umask" & chr(13)
crt.sleep(3000)
crt.Screen.Send "cat /etc/profile" & chr(13)
crt.sleep(3000)
crt.Screen.Send "cat /etc/security/time.conf" & chr(13)
crt.sleep(3000)
crt.Screen.Send "cd /" & chr(13)
crt.sleep(3000)

crt.Screen.Send "cat /etc/pam.d/login" & chr(13)
crt.sleep(3000)
crt.Screen.Send "cat /etc/pam.d/system-auth" & chr(13)
crt.sleep(3000)


crt.Screen.Send "cat /security/access.conf" & chr(13)
crt.sleep(3000)
crt.Screen.Send "cat /etc/inetd.conf" & chr(13)
crt.sleep(3000)
crt.Screen.Send "cat /etc/security/time.conf" & chr(13)
crt.sleep(3000)
crt.Screen.Send "cat /etc/security/limits.conf" & chr(13)
crt.sleep(3000)
crt.Screen.Send "cat /etc/securetty" & chr(13)
crt.sleep(3000)

crt.Screen.Send "find / -perm -2000 -user 0 -ls" & chr(13)
crt.sleep(6000)
crt.Screen.Send "find / -perm -4000 -user 0 -ls" & chr(13)
crt.sleep(6000)
crt.Screen.Send "find / -nouser -ls" & chr(13)
crt.sleep(6000)
End Sub

相关主题
相关文档
最新文档