[TOOL-5160] OSSEC detection test

author: Michael Boelen <michael.boelen@cisofy.com> 2018-10-23 13:58:22 +0300
committer: Michael Boelen <michael.boelen@cisofy.com> 2018-10-23 13:58:22 +0300
commit: de7d64a8a0be0dcb7a8375e248525b01813563c4 (patch)
tree: 8f72b71d89788ed8972f478c8f021aa9cc9a7050 /include/tests_tooling
parent: c94b97bd9e2ce706c77fe83e5924b781c402cc76 (diff)
1 files changed, 17 insertions, 0 deletions
diff --git a/include/tests_tooling b/include/tests_tooling
index 3112ef0c..6dc486ba 100644
--- a/include/tests_tooling
+++ b/include/tests_tooling
@@ -363,6 +363,23 @@
 #
 #################################################################################
 #
+    # Test        : TOOL-5160
+    # Description : Check for OSSEC
+    Register --test-no TOOL-5126 --weight L --network NO --category security --description "Check for presence of Snort"
+    if [ ${SKIPTEST} -eq 0 ]; then
+
+        if IsRunning "ossec-analysisd"; then
+            IDS_IPS_TOOL_FOUND=1
+            LogText "Result: OSSEC analysis daemon is active"
+            Report "ids_ips_tooling[]=ossec"
+            Display --indent 2 --text "- Checking presence of OSSEC" --result "${STATUS_FOUND}" --color GREEN
+        else
+            LogText "Result: OSSEC analysis daemon not active"
+        fi
+    fi
+#
+#################################################################################
+#
     # Test        : TOOL-5190
     # Description : Check for an IDS/IPS tool
     Register --test-no TOOL-5190 --weight L --network NO --category security --description "Check presence of IDS/IPS tool"
author	Michael Boelen <michael.boelen@cisofy.com>	2018-10-23 13:58:22 +0300
committer	Michael Boelen <michael.boelen@cisofy.com>	2018-10-23 13:58:22 +0300
commit	de7d64a8a0be0dcb7a8375e248525b01813563c4 (patch)
tree	8f72b71d89788ed8972f478c8f021aa9cc9a7050 /include/tests_tooling
parent	c94b97bd9e2ce706c77fe83e5924b781c402cc76 (diff)