Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Go to file

Michael Boelen a90d225bf4 Merge pull request #68 from d4t4king/master include/tests_filesystems tweak		2015-09-07 12:06:06 +02:00
db	Initial import	2014-08-26 17:33:55 +02:00
debian	Changes for build process	2014-10-24 14:21:27 +02:00
extras	Updated spec file with description, website and documentation link, version bump	2015-05-13 14:50:43 +02:00
include	Merge pull request #68 from d4t4king/master	2015-09-07 12:06:06 +02:00
plugins	Added note about community plugins and support address	2015-02-25 20:38:20 +01:00
.gitignore	Updated spec file and build script	2014-09-14 20:35:01 +02:00
CHANGELOG	Release 2.1.1	2015-07-22 20:34:14 +02:00
CONTRIBUTIONS.md	Extended guidelines	2015-09-06 21:38:56 +02:00
CONTRIBUTORS	Updated documentation	2015-07-22 16:27:39 +02:00
FAQ	Updated documentation	2015-07-22 16:27:39 +02:00
INSTALL	Update of the files to reflect HTTPS version of website and 2015. Happy New Year!	2015-01-03 12:45:22 +01:00
LICENSE	Update of LICENSE file, which has version control texts in it	2014-10-06 14:00:47 +02:00
README	Updated documentation	2015-07-22 16:27:39 +02:00
README.md	Updated readme files	2015-07-15 15:48:59 +02:00
default.prf	Adjusted connections_max_wait_state	2015-07-14 00:34:38 +02:00
lynis	Added full author name	2015-08-31 13:22:28 +02:00
lynis.8	Updates to several sections and point to documentation	2015-04-30 01:20:03 +02:00

README.md

lynis

Lynis - Security auditing and hardening tool, for Unix based systems

Lynis is a security auditing for Unix derivatives like Linux, BSD, and Solaris. It performs an in-depth security scan on the system to detect software and security issues. Besides information related to security, it will also scan for general system information, installed packages, and possible configuration issues.

We believe software should be simple, updated on a regular basis and open. You should be able to trust, understand, and even alter the software. Many agree with us, as the software is being used by thousands every day to protect their systems.

Main goals:

Automated security auditing
Compliance testing
Vulnerability management

The software aims to also assist with:

Configuration management
Software patch management
Penetration testing
Malware scanning
Intrusion detection

License:

GPLv3

Typical users of the software:

System administrators
Auditors
Security officers
Security professionals

First run

Clone or download the project files. No compilation or installation is required.
Execute: ./lynis audit system

If you want to run the software as root, we suggest altering the ownership of the files. Use chown -R and chgrp -R to recursively alter the owner and group.

Documentation

Full documentation: https://cisofy.com/documentation/lynis/

Flexibility

For people who want to expand tests, it is suggested to use the tests_custom file (template in include directory). Plugins are another possibility to customize, although their main goal is collecting data.

Enterprise options

This software component has additional options and support available for companies. If you want to perform more tests and centrally manage them, consider the purchase of a license.

Support

Got an improvement to share? Create an issue in the tracker on GitHub or send us an e-mail: lynis-dev@cisofy.com