Debian Administration Utilities
These are the utilities i have collected and each utility is having man page which gives you more information about each utility.
apachetop
apachetop - Realtime Apache monitoring tool
Apache top is a curses-based realtime utility to display information from a running copy of Apache.
It is modelled after the standard 'top' utility, and displays information such as the requests pers second, bytes per second
and the most popular URLs displayed.
It must be run from a machine running Apache, as it works by processing the logfiles found in /var/log/apache.
Install apachetop in Debian
#apt-get install apachetop
If you want to monitor your apache log files need to be in /var/log/apache location
Output
last hit: 00:00:00 atop runtime: 0 days, 00:04:05 17:21:05
All: 0 reqs ( 0.0/sec) 0.0B ( 0.0B/sec) 0.0B/req
2xx: 0 ( 0.0%) 3xx: 0 ( 0.0%) 4xx: 0 ( 0.0%) 5xx: 0 ( 0.0%)
R ( 30s): 0 reqs ( 0.0/sec) 0.0B ( 0.0B/sec) 0.0B/req
2xx: 0 ( 0.0%) 3xx: 0 ( 0.0%) 4xx: 0 ( 0.0%) 5xx: 0 ( 0.0%)
For more information about apachetop check the man page
apt-watch
apt-watch - Monitor apt sources for upgrades
apt-watch is a GNOME applet which will inform you when upgrades are available for your computer. It is similar to Windows Update or the Red Hat Network applet.
Install apt-watch in Debian
#apt-get install apt-watch
checkservice
checkservice - Checks the status of services on (remote) hosts
Checkservice is a simple and fast service checking perl script. It is able to show the results in many ways: by keeping logs, showing it on the PHP status page, output that MRTG can use or warning(plugins) if something is wrong. Checkservice features grouping of hosts, very easy configuration and thorough service checking using checkplugins
Install checkservice in Debian
#apt-get install checkservice
For more information about checkservice check the man page
diffmon
diffmon - Tool for reporting changes in system configuration.
This tool is run by a nightly cron job, and takes a `diff' of specified system configuration files and emails them to a specified email address. Options to diff can be specified. This is useful in friendly environments where there are multiple sysadmins working on configuration files/setups and everyone's changes are reported. CVS is a better answer, but most of us don't want to have the hassle of putting system files in a repository.
Install diffmon in Debian
#apt-get install diffmon
For more information about diffmon check the man page
dstat
dstat - versatile resource statistics tool
Dstat is a versatile replacement for vmstat, iostat and ifstat. Dstat overcomes some of the limitations of these programs and adds some extra features.
Dstat allows you to view all of your network resources instantly, you can for example, compare disk usage in combination with interrupts from your IDE controller, or compare the network bandwidth numbers directly with the disk throughput (in the same interval).
Dstat also cleverly gives you the most detailed information in columns and clearly indicates in what magnitude and unit the output is displayed.
Dstat is also unique in letting you aggregate block device throughput for a certain diskset or network bandwidth for a group of interfaces, i.e. you can see the throughput for all the block devices that make up a single filesystem or storage system.
Dstat's output, in its current form, is not suited for post-processing by other tools, it's mostly meant for humans to interprete real-time data as easy as possible.
Install dstat in Debian
#apt-get install dstat
For more information about dstat check man page
output
-cpu-total- -disk/total -net/total- ---paging-- ---system--
usr sys idl|_read write|_recv _send|__in_ _out_|_int_ _csw_
0 0 100| 0 0 | 0 0 | 0 0 | 0 0
1 1 98| 0 608k| 300B 1994B| 0 0 | 120 49
1 1 98| 0 0 | 420B 1328B| 0 0 | 120 42
0 2 98| 0 0 | 480B 1760B| 0 0 | 121 40
1 1 98| 0 0 | 600B 1760B| 0 0 | 123 44
0 2 98| 0 0 | 480B 1760B| 0 0 | 115 40
2 0 98| 0 0 | 473B 1330B| 0 0 | 113 45
2 0 98| 0 0 | 420B 1326B| 0 0 | 120 42
2 0 98| 0 0 | 480B 1544B| 0 0 | 119 42
0 2 98| 0 0 | 480B 1760B| 0 0 | 120 42
2 0 98| 0 0 | 420B 1546B| 0 0 | 112 44
1 1 98| 0 272k| 360B 1326B| 0 0 | 130 43
0 2 98| 0 8192B| 660B 1652B| 0 0 | 141 46
1 1 98| 0 0 | 420B 1544B| 0 0 | 121 40
2 0 98| 0 0 | 782B 1760B| 0 0 | 126 44
1 1 98| 0 0 | 480B 1760B| 0 0 | 120 40
2 0 98| 0 0 | 782B 1760B| 0 0 | 125 45
1 1 98| 0 0 | 646B 1760B| 0 0 | 122 40
e2undel
e2undel - Undelete utility for the ext2 file system
Interactive console tool to recover the data of deleted files on an ext2 file system under Linux. It does not require knowledge about how ext2 file systems works and should be usable by most people.
This tools searches all inodes marked as deleted on a file system and lists them as sorted by owner and time of deletion. Additionally, it gives you the file size and tries to determine the file type in the way file(1) does. If you did not just delete a whole bunch of files with a 'rm -r *', this information should be helpful to find out which of the deleted files you would like to recover.
E2undel will not work on ext3 (journaling) filesystems.
Install e2undel in Debian
#apt-get install e2undel
For more information about e2undel check man page
gkrellm
gkrellm - multiple stacked system monitors: 1 process [client]
GKrellM charts CPU, Disk, and all active net interfaces automatically. An on/off button and online timer for the PPP interface is provided. Meters for memory and swap usage as well as a system uptime monitor are provided. Additional features are:
* Client/server capabilities
* Clicking on left or right frame slides GKrellM shut to gain screen space.
* Autoscaling grid lines with configurable grid line resolution.
* LED indicators for the net interfaces.
* Configurable chart sizes.
Install gkrellm in Debian
#apt-get install gkrellm
For more information about gkrellm check man page
hwinfo
hwinfo - Hardware identification system
hwinfo is the hardware detection tool used in SuSE Linux.
In Debian-Edu (Skolelinux) hwinfo has shown better results than discover when detecting mouse, keyboard and monitor.
hwinfo is collecting information about the hardware installed on a system. Among others, libhd contains information about cdrom, zip, floppy, disks and partitions, network card, graphics card, monitor, camera, mouse, sound, pppoe, isdn, modem, printer, scanner, bios, cpu, usb, memory and smp.
Install hwinfo in Debian
#apt-get install hwinfo
For more information about hwinfo check man page
harden-remoteaudit
harden-remoteaudit - Audit your remote systems from this host
This package helps you to install a set of tools to check remote systems, sniff for passwords and more. Observe that this kind of activity can be illegal so you have to check if you are authorized to do so in the environment where you install this package.
You can check exploits, sniff for passwords and similar things.
Nessus note: You have to have the nessus client installed on some host. The client is provided by the 'nessus' package. You can install it on the same host but that is not necessary.
NOTE! This package includes packages that can damage the system that you audit. It should NOT be used on any host, network or system that you are not responsible for. It can also damage the hosts that are checked. You have been warned!
Install harden-remoteaudit in Debian
#apt-get install harden-remoteaudit
jmon
jmon - distributed resource monitor
Resource monitoring for large networks. The jMon system allows for the real time monitoring of CPU, memory and swap usage. The system makes use of a small daemon running on each of the machines that are to be monitored.
The client makes a TCP/IP connection with each of the servers specified in the configuration file. The statistics of all the host machines are displayed in an ncurses window on the console.
Install jmon in Debian
#apt-get install jmon
For more information about jmon check man page
localepurge
localepurge - Automagically remove unnecessary locale data
This is just a simple script to recover diskspace wasted for unneeded locale files and localized man pages. It will
automagically be invoked upon completion of any apt installation run.
Please note, that this tool is a hack which is *not* integrated with Debian's package management system and therefore is not for the faint of heart. This program interferes with the Debian package management and does provoke strange, but usually harmless, behaviour of programs related with apt/dpkg like dpkg-repack, debsums, reportbug, etc. Responsibility for its usage and possible breakage of your system therefore lies in the sysadmin's (your) hands.
Please definitely do abstain from reporting any such bugs blaming localepurge if you break your system by using it. If you don't know what you are doing and can't handle any resulting breakage on your own then please simply don't use this package.
Install localepurge in Debian
#apt-get install localepurge
For more information about localepurge check man page
output
localepurge: Disk space freed in /usr/share/locale: 32672K
lsscsi
lsscsi - list all SCSI devices (or hosts) currently on system
Uses information in sysfs (linux kernels 2.6.0 and later) to list all scsi devices (or hosts) currently attached to the system. Options can be used to control the amount and form of information provided for each device.
Install lsscsi in Debian
#apt-get install lsscsi
For more information about lsscsi check man page
mbmon
mbmon - Hardware monitoring without kernel dependencies (text client)
(x)mbmon allows you to monitor hardware status using your motherboard's sensors. This information can be: temperatures, voltages and/or fan speeds.This package contains the console client.
Install mbmon in Debian
#apt-get install mbmon
For more information about mbmon check man page
medussa
medussa - Distributed password cracking system
Medussa is a distributed password cracking system that can attempt various types of attacks to crypted passwords distributing the work on many machines.
Install medussa in Debian
#apt-get install medussa
nessus
nessus - Remote network security auditor, the client
The Nessus Security Scanner is a security auditing tool. It makes possible to test security modules in an attempt to find vulnerable spots that should be fixed.
It is made up of two parts: a server, and a client. The server/daemon, nessusd, is in charge of the attacks, whereas the client, nessus, provides the user a nice X11/GTK+ interface.
This package contains the GTK+ client, which exists in other forms and on other platforms, too.
Install nessus in Debian
#apt-get install nessus
For more information about nessus check man page
nessusd
nessusd - Remote network security auditor, the server
The Nessus Security Scanner is a security auditing tool. It makes possible to test security modules in an attempt to find vulnerable spots that should be fixed.
It is made up of two parts: a server, and a client. The server/daemon, nessusd, is in charge of the attacks, whereas the client, nessus, provides the user a nice X11/GTK+ interface.
This package contains the nessusd server, which must be run as root.
Install nessusd in Debian
#apt-get install nessusd
For more information about nessusd check man page
packagesearch
packagesearch - GUI for searching packages and viewing package information
This tool is aimed to help you search the packages you need. It should make the task of searching a pleasant experience.
Search can be done by
* pattern
* tags (based on the debtags system, a new way of categorizing Debian packages)
* files
* installed status
* orphaned packages
Additionally a lot of information about the packages is displayed, including the files belonging to them.
It is possible to install or remove packages.
Install packagesearch in Debian
#apt-get install packagesearch
For more information about packagesearch check man page
parted
parted - The GNU Parted disk partition resizing program
GNU Parted is a program that allows you to create, destroy, resize, move and copy hard disk partitions. This is useful for creating space for new operating systems, reorganising disk usage, and copying data to new hard disks. This package contains the Parted binary and manual page.
Parted currently supports DOS, Mac, Sun, BSD, GPT, MIPS and PC98 disklabels/partition tables, as well as a 'loop' (raw disk) type which allows use on RAID/LVM. Filesystems which are currently fully supported are ext2, ext3, fat (FAT16 and FAT32), ReiserFS (with libreiserfs) and linux-swap. Parted can also detect and remove HFS (Mac OS), JFS, NTFS, UFS (Sun and HP), XFS and ASFS/AFFS/APFS (Amiga) filesystems, but cannot create, resize or check these filesystems yet.
Note that ReiserFS support is only enabled if you install the libreiserfs0.3-0 package. Since libreiserfs0.3-0 has been removed from sarge, ReiserFS support is not compiled in the default package.
The nature of this software means that any bugs could cause massive data loss. While there are no known bugs at the moment, they could exist, so please back up all important files before running it, and do so at your own risk.
Install parted in Debian
#apt-get install parted
For more information about parted check man page
powertweak
powertweak - Tool to tune system for optimal performance
Powertweak is a tool for tweaking Linux systems to peak performance. It tunes PCI devices to use optimal settings and enables performance enhancing features of the CPU(s).
This package contains no files. It merely ensures that you install the following packages: powertweakd, powertweak-extra, powertweak-gtk
Install powertweak in Debian
#apt-get install powertweak
For more information about powertweak check man page
printtool
printtool - Tk-based printer configuration tool
This is an enhanced version of the Red Hat printtool, with autodetection of printers and PPD support.
Install printtool in Debian
#apt-get install printtool
For more information about printtool check man page
recover
recover - Undelete files on ext2 partitions
Recover automates some steps as described in the ext2-undeletion howto. This means it seeks all the deleted inodes on your hard drive with debugfs. When all the inodes are indexed, recover asks you some questions about the deleted file. These questions are:
* Hard disk device name
* Year of deletion
* Month of deletion
* Weekday of deletion
* First/Last possible day of month
* Min/Max possible file size
* Min/Max possible deletion hour
* Min/Max possible deletion minute
* User ID of the deleted file
* A text string the file included (can be ignored)
If recover found any fitting inodes, it asks to give a directory name and dumps the inodes into the directory. Finally it asks you if you want to filter the inodes again (in case you typed some wrong answers).
Note that recover works only with ext2 filesystems - it does not support ext3.
Install recover in Debian
#apt-get install recover
For more information about recover check man page
router-audit-tool
router-audit-tool - Tool for auditing Cisco router configuration
The Router Audit Tool (rat) audits router configurations. It will log into the routers specified using provided login
information, download the configuration and audit against a set of provided rules.
This package also provides the NSA's Cisco Router Configuration Guide
Install router-audit-tool in Debian
#apt-get install router-audit-tool
samhain
samhain - Data integrity and host intrusion alert system
Samhain is an integrity checker and host intrusion detection system that can be used on single hosts as well as large, UNIX-based networks. It supports central monitoring as well as powerful (and new) stealth features to run undetected on memory using steganography.
Main features
* Complete integrity check
+ uses cryptographic checksums of files to detect modifications,
+ can find rogue SUID executables anywhere on disk, and
* Centralized monitoring
+ native support for logging to a central server via encrypted and authenticated connections
* Tamper resistance
+ database and configuration files can be signed
+ logfile entries and e-mail reports are signed
+ support for stealth operation
Install samhain in Debian
#apt-get install samhain
For more information about samhain check man page
srg
srg - Fast, Flexible and Detailed log analysis for the Squid Proxy
SRG provides fast and flexible analysis of squid proxy log files while retaining a high level of detail, including down the the exact URLs visited by users and the times at which they were visited. SRG also contains support for generated PHP reports that can be integrated with your existing authentication system to provide granular access to report output.
Install srg in Debian
#apt-get install srg
For more information about srg check man page
tiger
tiger - Report system security vulnerabilities
TIGER, or the 'tiger' scripts, is a set of Bourne shell scripts, C programs and data files which are used to perform a security audit of UNIX systems. TIGER has one primary goal: report ways 'root' can be compromised.
Debian's TIGER incorporates new checks primarily oriented towards Debian distribution including: md5sums checks of installed files, location of files not belonging to packages, check of security advisories and analysis of local listening processes.
Install tiger in Debian
#apt-get install tiger
For more information about tiger check man page
userinfo
userinfo - display informations about a local user
Userinfo is a small console utility to display as much information about a local user as possible. It currently supports: password file info, home directory mode, mail forwards/aliases/last read time/new time/folder size, utmp info and more
Install userinfo in Debian
#apt-get install userinfo
For more information about userinfo check man page
varmon
varmon - VA RAID monitor
A text-based tool to monitor DAC 960 RAID controllers. This includes Mylex RAID cards from the 960 and 1100 series, eXteremeRAID 2000 & 3000, AcceleRAID 352 & 170.
Install varmon in Debian
#apt-get install varmon
For more information about varmon check man page
whowatch
whowatch - Real-time user logins monitoring tool
whowatch is a ncurses who-like utility that displays information about the users currently logged on to the machine, in real-time. Besides standard information (login name, tty, host, user's process), the type of the connection (ie. telnet or ssh) is shown.
Install whowatch in Debian
#apt-get install whowatch
For more information about whowatch check man page
wwwstat
wwwstat - httpd logfile analysis package
wwwstat processes a sequence of httpd Common Logfile Format access_log files and prior summary outputs, and then outputs a summary of the access statistics in a nice HTML format.
splitlog processes a sequence of httpd Common Logfile Format access_log files (or CLF with a one-field prefix) and splits the entries into separate files according to the requested URL and/or vhost prefix.
Install wwwstat in Debian
#apt-get install wwwstat
For more information about wwwstat check man page
xmbmon
xmbmon - Hardware monitoring without kernel dependencies
(x)mbmon allows you to monitor hardware status using your motherboard's sensors. This information can be: temperatures, voltages and/or fan speeds.
This package contains the graphical client.
Install xmbmon in Debian
#apt-get install xmbmon
For more information about xmbmon check man page
xlogmaster
xlogmaster - A program to monitor logfiles
Xlogmaster can monitor an almost infinite number of logfiles and all devices that can be read via "cat" like the /proc ones.On a regular expression base, you can hide, raise or lower lines in the logfile and set triggers, which can launch scripts or pop-up a window
Install xlogmaster in Debian
#apt-get install xlogmaster
For more information about xlogmaster check man page