TL;DR: WoTT provides seamless security audit of linux nodes
Our goal is to improve the security posture of your servers and devices. This is our open source agent that connects to the WoTT Dashboard.
Here are some of the things that WoTT will check for:
- Continuously analyzing your system for known vulnerabilities
- I.e. a CVE scan of your installed system packages
- Auditing your services to ensure they are configured securely
- E.g. making sure your SSH daemon doesn't allow root logins
- Making it easy to configure your firewall
- Ensuring that you don't have any insecure services running
- E.g. rsh and telnet
In addition to this, we also provide:
- A cryptographic identity to each node, that can be used for access control using Mutual TLS (mTLS).
- A simple credential management tool to help you remove hard coded credentials and API keys from your system
For more details and installation instructions, please see our Getting Started Guide.
You can also browser our Use Cases for more inspiration.
| Linux Distribution | Version | Comment |
|---|---|---|
| Ubuntu | 16.04, 18.04 | |
| Ubuntu Core | 16, 18 | Only works with Snap version |
| Debian/Raspbian | Jessie (8), Stretch (9), Buster (10) | |
| Amazon Linux | 2 | CVE scannning not available. |
Due to technical limitations in both Docker and the Snap package, the WoTT agent is unable to perform a full security audit in these environments. For best result, use the Debian package.