Runecast Analyzer 6.0 with OS-level research and Log4J scan • Nolabnoparty


runecast-analyzer-60-os-level-analysis-log4j-scan-01

Newest Runecast Analyzer 6.0 introduces the brand new OS-level research for Home windows and Linux in addition to the Log4j vulnerability scan.

Home windows and Linux OSs can now be scanned towards vulnerabilities and safety compliance extending the supported environments via Runecast but even so VMware, AWS, Azure, Kubernetes, and many others.

You probably have configured Runecast Analyzer to obtain computerized updates, while you get entry to this system a pop-up message informs you a couple of new model put in.

runecast-analyzer-60-os-level-analysis-log4j-scan-02

On the time of writing, newest to be had Runecast model is 6.0.4.1. Take a look at the Unencumber Notes for extra main points.

 

OS-level research

Home windows and Linux are the supported OSs in model 6.0. Regardless of the restricted choice of Linux distributions recently supported, extra distributions can be added within the subsequent Runecast releases.

From a unmarried pane of glass you’ll have an outline of the safety standing for the supported environments.

 

Permit OS-level research

OS-level research function helps each bodily and digital machines and should be enabled in this system since it’s now not energetic via default.

From the Runecast dashboard move to Settings > Connections and click on Turn on OS connection button beneath Running Gadget connection settings.

runecast-analyzer-60-os-level-analysis-log4j-scan-03

Input the Runecast Cope with of your equipment and click on Proceed.

runecast-analyzer-60-os-level-analysis-log4j-scan-04

When the OS research provider has been activated, click on End.

runecast-analyzer-60-os-level-analysis-log4j-scan-05

Now click on Set up OS brokers to obtain the brokers for the supported OSs.

runecast-analyzer-60-os-level-analysis-log4j-scan-06

Click on the desired OS agent bundle button to obtain the set up bundle and reserve it any place for your pc. Click on Shut when achieved.

runecast-analyzer-60-os-level-analysis-log4j-scan-07

When the desired applications were downloaded, deploy the applications to the machines to investigate.

 

Set up Home windows agent

Runecast Home windows agent may also be deployed in two tactics:

  • by means of GPO if Lively Listing surroundings is to be had
  • handbook set up

To manually set up the agent, replica the bundle to the Home windows system and unzip the record. Then proper click on the install-osquery.ps1 record and choose Run with PowerShell.

runecast-analyzer-60-os-level-analysis-log4j-scan-08

 

Kind y to run the script.

runecast-analyzer-60-os-level-analysis-log4j-scan-09

When the set up has been finished, you might wish to reboot the system to turn on the provider.

 

Set up Linux agent

The usage of a device like WinSCP, replica the Runecast agent bundle to the Linux system.

runecast-analyzer-60-os-level-analysis-log4j-scan-10

Extract the content material from the record with the tar command.

# sudo tar xzvf runecast-deb-osquery_5.0.1-1.linux_amd64.tar.gz

runecast-analyzer-60-os-level-analysis-log4j-scan-11

Pass to the simply created runecast-deb-osquery_5.0.1-1.linux_amd64 listing.

# cd runecast-deb-osquery_5.0.1-1.linux_amd64

runecast-analyzer-60-os-level-analysis-log4j-scan-12

Run the install-osquery-deb.sh script to set up the agent.

# sudo ./install-osquery-deb.sh

runecast-analyzer-60-os-level-analysis-log4j-scan-13

 

Test put in machines

To test put in machines with the Runecast agent, move to Connections tab and click on on Display Main points hyperlink within the Host with brokers column. The quantity signifies the present put in machines.

runecast-analyzer-60-os-level-analysis-log4j-scan-14

The checklist of put in machines is displayed.

runecast-analyzer-60-os-level-analysis-log4j-scan-15

 

Carry out the OS-level research

To research your Home windows and Linux machines, click on Analyze now button. The brand new Running Methods merchandise is now to be had within the checklist of supported environments. Click on Analyze to continue.

runecast-analyzer-60-os-level-analysis-log4j-scan-16

Decided on environments are being scanned.

runecast-analyzer-60-os-level-analysis-log4j-scan-17

To test the outcome, choose Running Methods from the All Methods drop-down menu.

runecast-analyzer-60-os-level-analysis-log4j-scan-18

The Running Methods Dashboard presentations the results of the research.

runecast-analyzer-60-os-level-analysis-log4j-scan-19

 

Log4J vulnerability scan

Since model 6.0.2.0, Runecast Analyzer can can locate Apache Log4j Java library vulnerability (CVE-2021-44228) on Home windows, Linux, and VMware environments.

Simply click on the Analyze now button and wait till the scan completes. Pass to Vulnerabilities phase to test which Merchandise are suffering from the CVE-2021-44228 vulnerability.

runecast-analyzer-60-os-level-analysis-log4j-scan-20

Runecast is recently providing a loose scan of your environments towards Log4J vulnerability.

 

Safety profiles

Runecast added new safety profiles beef up, comparable to BSI and GDPR for Azure and DISA STIG for vSphere 6.7.

runecast-analyzer-60-os-level-analysis-log4j-scan-21

Runecast Analyzer 6.0 is to be had to obtain as 14-day trial.

signature



Supply hyperlink

Leave a Reply

Your email address will not be published.

Back To Top