From 2bb36b6d813562ab14f60d680f32723128f37c38 Mon Sep 17 00:00:00 2001
From: Leif Johansson <leifj@sunet.se>
Date: Thu, 1 Nov 2018 09:28:15 +0100
Subject: [PATCH] added security reporting tool from Jonas Lejon

---
 global/overlay/usr/local/sbin/secreport.sh | 47 ++++++++++++++++++++++
 1 file changed, 47 insertions(+)
 create mode 100755 global/overlay/usr/local/sbin/secreport.sh

diff --git a/global/overlay/usr/local/sbin/secreport.sh b/global/overlay/usr/local/sbin/secreport.sh
new file mode 100755
index 00000000..1adc40ae
--- /dev/null
+++ b/global/overlay/usr/local/sbin/secreport.sh
@@ -0,0 +1,47 @@
+#!/bin/bash
+
+echo "### $HOSTNAME"
+
+echo "### SUID binaries"
+find / -perm -4000 -ls
+
+echo "### World writable files"
+find / -perm -o=w
+
+echo "### lines in authorized_keys"
+for h in `awk -F: '{print $NF}' /etc/passwd`; do
+   echo "-- $h"
+   if [ -f $h/.ssh/authorized_keys ]; then
+      cat $h/.ssh/authorized_keys
+   fi
+done
+
+echo "### cronjobs"
+for u in `awk -F: '{print $1}' /etc/passwd`; do
+   echo "-- $u"
+   crontab -u $u -l
+done
+
+echo "### Nyligen ändrade filer i systemet"
+find / -type f -mtime 1 -ls
+
+echo "### Installerade paket och versioner"
+dpkg -l
+
+echo "### Portar som lyssnar lsof alt netstat"
+lsof -i|grep LISTEN alt netstat -lkp
+
+echo "### Entropy"
+cat /proc/sys/kernel/random/entropy_avail
+
+echo "### fstab"
+fstab
+
+echo "### arp-tabell"
+arp -na
+
+echo "### processlista"
+ps -auxww
+
+echo "### lsmod"
+lsmod