Home | About | Partners | Contact Us
SourceForge Logo VA Linux Systems

Welcome to http://ncat.sourceforge.net/

This is the homepage for development versions of NCAT, the Network Config Audit Tool and RAT, the Router Audit Tool. They were written to facilitate checking of security configuration settings on large numbers of Cisco IOS configurations, but it is simple and general enough to check for required/forbidden settings for any arbitrary config/text file. Examples are given for checking IOS, Cat6k and HTML

I have developed a wrapper to NCAT called rat (Router Audit Tool). It contains a simple tool (snarf) to download configurations and a report generation tool. The rat distribution contains the latest NCAT. The current version contains rules to check configurations against the NSA IOS Rules.

Updated 2013/07/20

The current versions of this project are maintained by the The Center for Internet Security. Current (2013-07-20) versions can be found here: You can pull the rat-2.2 release directly here. Ubuntu users can apt-get version 1.1 (no rules) as "apt-get install router-audit-tool"

Thanks to the Original RAT contributors for helping create the tool and configuration rules.

...and if anybody ever wants to reimplement this in python, I've got a great project name...

br> Here is a link to a Power Point presentation about the Router Audit Tool

Here is a link to the postscript version of a presentation about the Router Audit Tool

Here is a link to sample rat output

Here is a link to rat documentation

Here are the the rat README file and rat INSTALL.txt file

Here is a link to the rules file

Here is an HTTP link to Rob Thomas' excellent security tools.
His Secure IOS config template inspired the creation of this tool

Also see Cisco's Improving Security on Cisco Routers

Sun Nov 22 12:34:40 UTC 2009

All trademarks and copyrights on this page are properties of their respective owners. Forum comments are owned by the poster.