Open-AudIT is a network auditing application. It is based on the scripting languages of PHP, Bash and VBScript. It can tell you what is on your network, how it is configured and when it changes.
Data is retrieved with Bash and/or VBScript, stored in a database and viewed through a web interface.
The server only needs a web server (Apache and IIS have both been tested) and a MySQL install. Both of these applications are free to use.
Your network devices can be queried and audited. Results are stored in a database for viewing, reporting and change auditing. All interaction is via standards compliant web pages.
To setup Open-AudIT you will need the following - a webserver (IIS or Apache will do), PHP installed on the webserver, a MySQL database (usually residing on the webserver), the gd and imagick extensions for PHP. Once these are installed and working, simply download the application (download the SVN Trunk for the latest version). Extract the files into a directory on your webserver that is visible to the clients. Call the page setup.php in a web browser. Follow the prompts. It really should be that simple.
To audit Windows systems, you will need to run the 'firewall_enable.vbs' script locally on each system you wish to audit remotely. In a domain environment, you will need Administrative permissions to audit remote systems. Examine audit.config (in the scripts directory) and configure to your needs. Auditing your entire domain can be accomplished by a single command - or you could make a 'scheduled task' to audit the domain at a set time. You could also combine the audit script with your domain logon script, so that every time a system is logged on, it is also audited.
To audit Linux workstations, run the script audit_linux.sh (in the scripts directory) on each system.
To scan your network, use nmap.vbs (also in the scripts directory). Now, everything on you network will be visible to you and you will know if it changes.
LicenseOpen-AudIT is licensed under the terms of the GNU General Public License as published by the Free Software Foundation. This gives you legal permission to copy, distribute and/or modify Open-AudIT under certain conditions. Read the 'LICENSE' file in the Open-AudIT distribution or read the online version of the license for more details. Open-AudIT is provided AS IS with NO WARRANTY OF ANY KIND, INCLUDING THE WARRANTY OF DESIGN, MERCHANTABILITY, AND FITNESS FOR A PARTICULAR PURPOSE.
FeaturesOpen-AudIT can track the following data on computer systems:
- Fixed Disks
- SCSI devices
- Optical, Tape and Floppy Drives
- Processor and Bios information
- Memory Details
- Network, Video and Sound Cards
- Keyboard and mouse
- Battery Information
- Locally attached printers
- USB Devices
- And More
- Installed and Uninstalled Software
- Specific executable versions
- System Components
- Hotfixes and Patches
- What is run at Startup
- IE Browser Helper Objects
- Software Install Keys
- Windows (95, 98, ME, NT, 2000, XP, 2003, Vista)
- Office (XP and 2003)
- Crystal Reports (9, 11)
- Many Others
- Operating System Settings
- General Information (OS Type, Service Pack, Registered User, etc)
- Shared Directories
- Major Software Versions (IE, DX, Media Player)
- Security Settings
- Nmap discovered Ports
- Users and Groups
- IIS Settings
- Disk Usage Graphs
- Audit History
Networked DevicesOpen-AudIT can audit network devices such as printers, switches, routers - anything with an IP Address can be audited. You can be alerted when new devices appear on your network.
ReportingReports are available for:
- Operating System Type
- IE Versions
- Firefox Versions
- Memory Sizes
- Processor Types and Speeds
- Hard Disk sizes
- Software Keys
- Detected Network Servers
- Newly Detected Software
- Low Disk Space
- Systems not audited for xxx days
- Export to Inkscape, Dia, PDF
- Custom reports by request