.

AIX Vulnerability Assessments

<<

ras76

User avatar

Newbie
Newbie

Posts: 15

Joined: Wed Mar 27, 2013 9:48 am

Post Tue May 21, 2013 8:46 am

AIX Vulnerability Assessments

Has anyone had any experience in doing security audits of Servers running AIX 6.1 O/S?

If so can you recommend any free vulnerability scanners/best practice analyzers in the mould of Microsoft Baseline Security Analyzer for computers running Windows Server - that can audit AIX?

Plus any common weaknesses/default weaknesses you find with servers running AIX as their OS.

It would be useful to identify any tools that can export hashes for local admin accoiunts, and tools to run dictionary password attacks over the hashes as well.
Last edited by ras76 on Tue May 21, 2013 8:53 am, edited 1 time in total.
<<

Triban

User avatar

Hero Member
Hero Member

Posts: 620

Joined: Fri Feb 19, 2010 4:17 pm

Post Tue May 21, 2013 9:41 am

Re: AIX Vulnerability Assessments

Welcome to AIX, bit of a different beast from Windows.  http://www.auditunix.com/unix-security-tool/ this might help.  Some of the best practices around securing Linux can also apply to AIX - root shouldn't have remote access, users should remote in with their IDs and use SUDO to execute elevated commands.  don't use telnet if other more secure methods are supported.  Here is a link to a Tenable post, it is older, but some of the plugins may still apply: http://www.tenable.com/blog/aix-best-pr ... its.&nbsp; You will probably require SSH access to the systems to adequately audit them.  Oh and be careful when scanning these systems, they area  bit more sensitive than Windows and some scanners will break them even if you are running with safe scans.

Good luck!
Certs: GCWN
(@)Dewser
<<

ras76

User avatar

Newbie
Newbie

Posts: 15

Joined: Wed Mar 27, 2013 9:48 am

Post Wed May 22, 2013 2:44 am

Re: AIX Vulnerability Assessments

3xban wrote:Welcome to AIX, bit of a different beast from Windows.  http://www.auditunix.com/unix-security-tool/ this might help.  Some of the best practices around securing Linux can also apply to AIX - root shouldn't have remote access, users should remote in with their IDs and use SUDO to execute elevated commands.  don't use telnet if other more secure methods are supported.  Here is a link to a Tenable post, it is older, but some of the plugins may still apply: http://www.tenable.com/blog/aix-best-pr ... its.&nbsp; You will probably require SSH access to the systems to adequately audit them.  Oh and be careful when scanning these systems, they area  bit more sensitive than Windows and some scanners will break them even if you are running with safe scans.

Good luck!


Thanks 3xban , is John the Ripper still the best tool for password cracking of AIX, as it would be traditional *nix systems?

Return to Network Pen Testing

Who is online

Users browsing this forum: No registered users and 0 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software