I am a friend of automating things. For example if you have to check the config of your Cisco devices for matching your security standards manually, it won’t happen (because you have other things to do…).
So it’s a nice thing to automate this check:
This python script runs through a local directory of Cisco IOS-style config files checking these for some security points. In my case the local directory is a rancid SVN repository containing various groups (‘GROUP1’, ‘GROUP2’).
The script is far away from being complete but it is a good starting point for adding new checks. So feel free to customize it to your needs and send pull requests if you want.