...
Open-AudIT runs an Nmap discovery on each target IP address. OpeOpen-AudIT scans the Nmap top 1000 TCP ports, as well as UDP 62078 (Apple IOS) and UDP 161 (SNMP). For Open-AudIT to consider a target IP to have a device responding, any of the Nmap Top 1000 TCP Ports must be responding or the UDP 62078. A target that responds to UDP 161 (SNMP) only and NO other ports (TCP or UDP 62078 / 161) is not considered to be responding.
...
| Code Block | ||
|---|---|---|
| ||
netsh firewall set service type=remoteadmin mode=enable netsh advfirewall firewall set rule group="windows management instrumentation (wmi)" new enable=yes netsh advfirewall firewall set rule group="remote administration" new enable=yes netsh advfirewall firewall set rule name="File and Printer Sharing (Echo Request - ICMPv4-In)" new enable=yes |
Linux
On Linux, Open-AudIT uses SSH as it's primary method of auditing. SNMP is also supported (and detailed below).
...
NOTE - Running as different users will generate a different list of environment variables.
ESX
On VMware ESX, Open-AudIT uses SSH as it's primary method of auditing. SNMP is also supported (and detailed below).
OSX
On OSX, Open-AudIT uses SSH as it's primary method of auditing. SNMP is also supported (and detailed below).
The OSX audit script should be run by root or using sudo access.
AIX
On AIX, Open-AudIT uses SSH as it's primary method of auditing. SNMP is also supported (and detailed below).
The AIX audit script should be run by root.
Solaris
On Solaris, Open-AudIT uses SSH as it's primary method of auditing. SNMP is also supported (and detailed below).
The Solaris audit script should be run by root.
SNMP
SNMP v1, v2c and v3 are supported. Read access is required.
...