tyler.durden
/
lynis
mirror of https://github.com/CISOfy/lynis.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
3,638 Commits 2 Branches 62 Tags 17 MiB
Commit Graph

3638 Commits

Author SHA1 Message Date
xnoguer c7b73837db Removing changes from another branch 2023-04-23 17:44:44 -04:00
xnoguer 09c03ce222 Using grep -E 2023-04-23 17:40:16 -04:00
xnoguer 6f1797fb59 Using grep -E 2023-04-23 17:38:21 -04:00
xnoguer fd64aa24d6 Adding test MALW-3291 in order to solve issue 1322 (related to issue 994) 2023-04-18 16:46:19 -04:00
xnoguer 833508a590 Adding php.ini files for versions 8.0, 8.1 and 8.2 2023-04-05 15:58:26 -04:00
Thomas Sjögren fe0b40c98d
support perf_event_paranoid=4 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2023-03-10 10:46:04 +01:00
DemurAIdev 02ad15862d ID Languages add 2023-03-06 11:45:01 +07:00
Johannes Segitz 349975103f tests_mac_frameworks: check for existance of semanage binary. It's not 
installed everywhere, causing this error message:
/usr/share/lynis/include/tests_mac_frameworks: line 161: permissive: command not found
/usr/share/lynis/include/tests_mac_frameworks: line 162: permissive: command not found
 2023-02-23 14:15:16 +01:00
al-lac ef3a8338a0 osdetection: add macOS Ventura 2023-01-27 15:12:17 +01:00
noci2012 b64f7c8f53
Typo in previous paste 2023-01-08 00:41:56 +01:00
noci2012 e618acaf96
Update some EOL date 2023-01-08 00:40:36 +01:00
pyllyukko 31c22f2daa
Added "prosecute" & "report" to LEGAL_BANNER_STRINGS 
https://xkcd.com/838/
 2023-01-05 14:43:29 +02:00
pyllyukko 051052cc15
Added Slackware support for PackageIsInstalled() function 2022-11-17 18:47:44 +02:00
Alan Gonzalez 4edbce250b
Update profiles 2022-10-28 14:45:05 -04:00
Alan Gonzalez 8e9a95d887
Update profiles 2022-10-28 14:08:26 -04:00
Michael Boelen 59a3c4b536
Updated log 2022-10-24 16:22:27 +02:00
Michael Boelen 38b7b47c9c
Merge pull request #1340 from HansHoogerwerf/date-nanosecond-support-check 
Verify the linux OS supports nanoseconds
 2022-10-24 16:21:26 +02:00
HansHoogerwerf bbe135d56f
Fix space 2022-10-17 16:27:21 +02:00
HansHoogerwerf ff26dca83a
Fix simple mistake 2022-10-17 16:24:59 +02:00
HansHoogerwerf 98ac5a562a
Verify the linux OS supports nanoseconds 
Add extra check to verify the linux OS supports nanoseconds. This might not be the case with certain busybox implementations.
 2022-10-17 15:46:40 +02:00
Michael Boelen 490d39f580
Merge pull request #1292 from konstruktoid/issue1291 
Only test Compression if sshd version < 7.4
 2022-10-12 10:51:31 +02:00
Michael Boelen bf4fa9fabf
Merge pull request #1294 from konstruktoid/issue1288 
add plocate
 2022-10-12 10:48:25 +02:00
Michael Boelen 6a5b5f90c9
Merge pull request #1324 from nickanderson/issue-1323/master 
Fixed typo in Group for FINT-4316
 2022-10-12 10:37:05 +02:00
Michael Boelen 6ee10048b1
Merge pull request #1336 from MassacreNetworks/patch-1 
expected variable $NOW
 2022-10-12 10:36:29 +02:00
Ximalas 49bbf25abe
Update tests_database: Redis configuration file 
On FreeBSD the Redis configuration file is typically stored as /usr/local/etc/redis.conf.
 2022-09-26 10:05:39 +02:00
Massacre Networks 2c27a8fdce
expected variable $NOW 2022-09-24 19:11:40 +03:00
Michael Boelen 73d43c25eb
Moved section to discover current timestamp related to issue #1329 2022-09-17 14:49:26 +00:00
Zafer Balkan 2788d9fff3
Merge branch 'CISOfy:master' into wazuh-malware-scan 2022-08-29 15:40:23 +03:00
Michael Boelen b53d6a80d7
Updated log 2022-08-24 11:43:37 +00:00
Michael Boelen 622f53247d
[DBS-1820] added newer style format for Mongo authorization setting 2022-08-24 11:42:22 +00:00
Thomas Sjögren 4f6eeb7537 remove file from path 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2022-08-24 10:17:54 +02:00
Thomas Sjögren fc62b39f34 find redis.conf if /snap directory exists 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2022-08-23 11:57:05 +02:00
Thomas Sjögren fe5990f208 remove whitespaces 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2022-08-23 11:56:25 +02:00
Nick Anderson a19f532ddf
Fixed typo in Group for FINT-4316 
Closes #1323
 2022-08-17 14:03:21 -05:00
Zafer Balkan 3140a245da
Added wazuh-agent as a remote syslog capability 2022-08-05 15:45:35 +03:00
Zafer Balkan 32a39eaaf8
Added Wazuh agent as a rootkit scanner 
Wazuh is a fork of OSSEC and is being actively maintained. Wazuh agent has capabilities to detect and prevent rootkits. Therefore, it seems feasible to add wazuh-agent to the accepted rootkit detection products.

https://documentation.wazuh.com/current/pci-dss/rootkit-detection.html
 2022-07-20 21:50:26 +03:00
Zafer Balkan e4cd5eaede
Added Wazuh Agent as a malware scanner/antivirus 
Solves https://github.com/CISOfy/lynis/issues/1304

Wazuh is a fork of OSSEC and is being actively maintained. Wazuh agent has capabilities to detect and prevent malware acting as an EDR. Therefore, it seems feasible to add wazuh-agent to the accepted antivirus products.

https://documentation.wazuh.com/current/user-manual/capabilities/anomalies-detection/index.html
https://documentation.wazuh.com/current/pci-dss/rootkit-detection.html
 2022-07-20 21:41:55 +03:00
Thomas Sjögren b3436629ce add check for ESET oaeventd 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2022-06-20 09:54:29 +02:00
Michael Boelen 8d9cdb22f4
Release 3.0.8 2022-05-17 15:07:48 +02:00
Thomas Sjögren 975712a616 add plocate 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2022-05-15 23:58:43 +02:00
Thomas Sjögren e124499e27 Only test Compression if sshd version < 7.4 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2022-05-04 10:51:35 +02:00
mab974 f315c0b325
osdetection: add Koozali #1274 2022-04-13 13:42:21 +04:00
Skia 34d99f72f6 osdetection: add PostmarketOS 2022-03-17 23:28:34 +01:00
Michael Boelen 64758216f2
Merge pull request #1271 from fizista/symlink_file 
Allow symlinks to be used when searching for configuration files
 2022-03-14 11:54:55 +01:00
Michael Boelen 0664dea946
Merge branch 'master' into symlink_file 2022-03-14 11:54:03 +01:00
Michael Boelen 5cd4b239b5
Update CHANGELOG.md 2022-03-14 11:49:41 +01:00
Michael Boelen e2781677ba
[KRNL-5820] small changes to prevent using ROOTDIR and resetting it, also showing additional paths in screen output 2022-03-14 11:48:30 +01:00
Michael Boelen ff3f24bbba
Merge pull request #1265 from rfrohl/alternative_path_security-limits 
[KRNL-5820] additional path for security/limits.conf
 2022-03-14 11:30:29 +01:00
Wojciech Banaś 4098236412 #1270 added finding configuration files in the "etc" directory, even if they are symlinks 2022-02-14 13:23:20 +01:00
Michael Boelen 4f382331b3
Renumbered new test PKGS-7346 to PKGS-7200 2022-02-10 14:26:38 +01:00