Debsecan

pyth0n3 · January 19, 2011

Debscan este un program care ruleaza in cmd-line , scaneaza sistemul pt a

detecta diverse vulnerabilitati in pachetele instalate

In practica ce face?

Face un scan asupra arhivei dpkg si pune in confrunt pachetele instalate

cu vulnerabilitatile gasite de catre Debian Testing Security Team

In cazul in care folositi o distributie ca debian ,debsecan poate fi

instalat folosind aptitude

Pt a scana sistemul se poate da comandul debsecan

Un simplu output a unui scan este urmatorul


CVE-2010-2023 exim4-daemon-light (low urgency)
CVE-2010-2024 exim4-daemon-light (low urgency)
CVE-2010-4344 exim4-daemon-light (remotely exploitable, high urgency)
CVE-2010-4345 exim4-daemon-light (medium urgency)

Poate fi specificat un output divers cu mai multe detalii


debsecan --format detail >> file


cat file | grep exim


installed: exim4-config 4.69-9
             (built from exim4 4.69-9)
  fixed in unstable: exim4 4.72-1 (source package)
  installed: exim4-config 4.69-9
             (built from exim4 4.69-9)
  fixed in unstable: exim4 4.72-1 (source package)
  installed: exim4-config 4.69-9
             (built from exim4 4.69-9)
  fixed in unstable: exim4 4.70-1 (source package)
  fixed on branch:   exim4 4.69-9+lenny1 (source package)
  installed: exim4-config 4.69-9
             (built from exim4 4.69-9)
  fixed in unstable: exim4 4.72-3 (source package)
  installed: exim4-daemon-light 4.69-9
             (built from exim4 4.69-9)
  fixed in unstable: exim4 4.72-1 (source package)
  installed: exim4-daemon-light 4.69-9
             (built from exim4 4.69-9)
  fixed in unstable: exim4 4.72-1 (source package)
  installed: exim4-daemon-light 4.69-9
             (built from exim4 4.69-9)
  fixed in unstable: exim4 4.70-1 (source package)
  fixed on branch:   exim4 4.69-9+lenny1 (source package)
  installed: exim4-daemon-light 4.69-9
             (built from exim4 4.69-9)
  fixed in unstable: exim4 4.72-3 (source package)
  installed: exim4 4.69-9
             (built from exim4 4.69-9)
  fixed in unstable: exim4 4.72-1 (source package)
  installed: exim4 4.69-9
             (built from exim4 4.69-9)
  fixed in unstable: exim4 4.72-1 (source package)
  installed: exim4 4.69-9
             (built from exim4 4.69-9)
  fixed in unstable: exim4 4.70-1 (source package)
  fixed on branch:   exim4 4.69-9+lenny1 (source package)
  installed: exim4 4.69-9
             (built from exim4 4.69-9)
  fixed in unstable: exim4 4.72-3 (source package)
  installed: exim4-base 4.69-9
             (built from exim4 4.69-9)
  fixed in unstable: exim4 4.72-1 (source package)
  installed: exim4-base 4.69-9
             (built from exim4 4.69-9)
  fixed in unstable: exim4 4.72-1 (source package)
  installed: exim4-base 4.69-9
             (built from exim4 4.69-9)
  fixed in unstable: exim4 4.70-1 (source package)
  fixed on branch:   exim4 4.69-9+lenny1 (source package)
  installed: exim4-base 4.69-9
             (built from exim4 4.69-9)
  fixed in unstable: exim4 4.72-3 (source package)

Un alt tip de scan care se poate face este urmatorul


debsecan --suite lenny --only-fixed >> file_fixed

Acest scan se va concentra pt un suite lenny , va cauta vulnerabilitatile

care sunt fixed


cat file_fixed | grep exim


CVE-2010-4344 exim4-config (fixed, remotely exploitable, high urgency)
CVE-2010-4344 exim4-daemon-light (fixed, remotely exploitable, high 
urgency)
CVE-2010-4344 exim4 (fixed, remotely exploitable, high urgency)
CVE-2010-4344 exim4-base (fixed, remotely exploitable, high urgency)

In acest caz se poate folosi urmatoarea sintaxa pt a instala updat-urile

pt problemele de tipul fixed


apt-get install $(debsecan --suite lenny --only-fixed --format packages)

La urmatoarea adresa pot fi gasite mai multe informatii debsecan

Download :

wget http://sprunge.us/KVbQ -O debsecan.txt

PuRiCeL · January 20, 2011

+1 multumesc !

Sign In

Debsecan

Recommended Posts

pyth0n3

PuRiCeL

Join the conversation

Browse

Activity

Pages