Projects / Lynis

Lynis

Lynis is an auditing and hardening tool for Unix derivatives like Linux/BSD/Solaris. It scans systems to detect software and security issues. Besides security-related information, it will also scan for general system information, installed packages, and possible configuration mistakes. The software is aimed at assisting automated auditing, software patch management, and vulnerability and malware scanning of Unix-based systems.

Tags
Licenses
Operating Systems
Implementation

RSS Recent releases

  •  10 Apr 2014 14:21

    Release Notes: This release adds support for Amazon Linux and contains a new Lynis test for NTP to test step-tickers file (Red Hat and clones) [TIME-3160]. The FAQ and README files were updated, including references to the Web site.

    •  03 Apr 2014 17:40

      Release Notes: This release adds supporting links to the control documentation. This way, findings can be shortened in future releases for better output display. A new test has been added to detection of the Linux I/O scheduler. Test AUTH09208 has been extended to find non-unique accounts on more platforms. A minor display error for PAM modules was adjusted to properly display the status.

      •  27 Mar 2014 13:46

        Release Notes: This release adds several improvements like extending accounting, new suggestions, and changes to the LILO boot loader test.

        •  21 Mar 2014 19:14

          Release Notes: This released adds a new group property for the report. Additionally, it has two new AIDE configuration tests, adds grep to the list of binaries, and shows a suggestion when using NIS/NIS+.

          •  14 Mar 2014 22:11

            Release Notes: This released adds a check for GPG signing in yum.conf [PKGS-7387] and checking the CUPS configuration file permissions [PRNT-2307]

            Screenshot

            Project Spotlight

            C-ICAP Classify

            An AI content filter.

            Screenshot

            Project Spotlight

            Classing{js}

            A library that mimics the classical OOP style in JavaScript.