Runecast Analyzer 6.0 with OS-level research and Log4J scan • Nolabnoparty


runecast-analyzer-60-os-level-analysis-log4j-scan-01

Newest Runecast Analyzer 6.0 introduces the brand new OS-level research for Home windows and Linux in addition to the Log4j vulnerability scan.

Home windows and Linux OSs can now be scanned in opposition to vulnerabilities and safety compliance extending the supported environments via Runecast but even so VMware, AWS, Azure, Kubernetes, and many others.

In case you have configured Runecast Analyzer to obtain computerized updates, while you get right of entry to this system a pop-up message informs you a few new model put in.

runecast-analyzer-60-os-level-analysis-log4j-scan-02

On the time of writing, newest to be had Runecast model is 6.0.4.1. Take a look at the Free up Notes for extra main points.

 

OS-level research

Home windows and Linux are the supported OSs in model 6.0. In spite of the restricted choice of Linux distributions recently supported, extra distributions will likely be added within the subsequent Runecast releases.

From a unmarried pane of glass you’ll have an outline of the safety standing for the supported environments.

 

Allow OS-level research

OS-level research characteristic helps each bodily and digital machines and should be enabled in this system since it’s no longer energetic via default.

From the Runecast dashboard cross to Settings > Connections and click on Turn on OS connection button below Working Gadget connection settings.

runecast-analyzer-60-os-level-analysis-log4j-scan-03

Input the Runecast Cope with of your equipment and click on Proceed.

runecast-analyzer-60-os-level-analysis-log4j-scan-04

When the OS research carrier has been activated, click on End.

runecast-analyzer-60-os-level-analysis-log4j-scan-05

Now click on Set up OS brokers to obtain the brokers for the supported OSs.

runecast-analyzer-60-os-level-analysis-log4j-scan-06

Click on the desired OS agent bundle button to obtain the set up bundle and put it aside any place for your pc. Click on Shut when completed.

runecast-analyzer-60-os-level-analysis-log4j-scan-07

When the desired programs had been downloaded, deploy the programs to the machines to investigate.

 

Set up Home windows agent

Runecast Home windows agent may also be deployed in two tactics:

  • by the use of GPO if Energetic Listing atmosphere is to be had
  • guide set up

To manually set up the agent, replica the bundle to the Home windows system and unzip the record. Then proper click on the install-osquery.ps1 record and choose Run with PowerShell.

runecast-analyzer-60-os-level-analysis-log4j-scan-08

 

Sort y to run the script.

runecast-analyzer-60-os-level-analysis-log4j-scan-09

When the set up has been finished, it’s possible you’ll want to reboot the system to turn on the carrier.

 

Set up Linux agent

The use of a device like WinSCP, replica the Runecast agent bundle to the Linux system.

runecast-analyzer-60-os-level-analysis-log4j-scan-10

Extract the content material from the record with the tar command.

# sudo tar xzvf runecast-deb-osquery_5.0.1-1.linux_amd64.tar.gz

runecast-analyzer-60-os-level-analysis-log4j-scan-11

Cross to the simply created runecast-deb-osquery_5.0.1-1.linux_amd64 listing.

# cd runecast-deb-osquery_5.0.1-1.linux_amd64

runecast-analyzer-60-os-level-analysis-log4j-scan-12

Run the install-osquery-deb.sh script to set up the agent.

# sudo ./install-osquery-deb.sh

runecast-analyzer-60-os-level-analysis-log4j-scan-13

 

Take a look at put in machines

To test put in machines with the Runecast agent, cross to Connections tab and click on on Display Main points hyperlink within the Host with brokers column. The quantity signifies the present put in machines.

runecast-analyzer-60-os-level-analysis-log4j-scan-14

The listing of put in machines is displayed.

runecast-analyzer-60-os-level-analysis-log4j-scan-15

 

Carry out the OS-level research

To research your Home windows and Linux machines, click on Analyze now button. The brand new Working Methods merchandise is now to be had within the listing of supported environments. Click on Analyze to continue.

runecast-analyzer-60-os-level-analysis-log4j-scan-16

Decided on environments are being scanned.

runecast-analyzer-60-os-level-analysis-log4j-scan-17

To test the end result, choose Working Methods from the All Methods drop-down menu.

runecast-analyzer-60-os-level-analysis-log4j-scan-18

The Working Methods Dashboard shows the results of the research.

runecast-analyzer-60-os-level-analysis-log4j-scan-19

 

Log4J vulnerability scan

Since model 6.0.2.0, Runecast Analyzer can can locate Apache Log4j Java library vulnerability (CVE-2021-44228) on Home windows, Linux, and VMware environments.

Simply click on the Analyze now button and wait till the scan completes. Cross to Vulnerabilities phase to test which Merchandise are suffering from the CVE-2021-44228 vulnerability.

runecast-analyzer-60-os-level-analysis-log4j-scan-20

Runecast is recently providing a loose scan of your environments in opposition to Log4J vulnerability.

 

Safety profiles

Runecast added new safety profiles strengthen, similar to BSI and GDPR for Azure and DISA STIG for vSphere 6.7.

runecast-analyzer-60-os-level-analysis-log4j-scan-21

Runecast Analyzer 6.0 is to be had to obtain as 14-day trial.

signature



Supply hyperlink

Leave a Reply

Your email address will not be published.

Back To Top