Lynis is an security auditing and hardening tool for Unix derivatives like Linux/BSD/Solaris. It performs an in-depth scan on the system to detect software and security issues. Besides information related to security, it will also scan for general system information, installed packages, and possible configuration mistakes. The software is aimed at assisting automated auditing, configuration management, software patch management, vulnerability detection, and malware scanning of Unix-based systems.
|Tags||Security Forensics Diagnostics Audit|
|Operating Systems||Unix Linux Mac OS Solaris HP-UX AIX|
Release Notes: This release adds PHP related tests (e.g. register_global), several improvements of existing functions, and new report values (plugins_enabled, session_timeout_enabled and session_timeout_method). Some smaller improvements have been applied.
Release Notes: This release fixes a security vulnerability. Several new tests for nginx have been added. Debugging via profile is possible (again) and some adjustments have been made to the screen output.
Release Notes: This release adds support for parsing Nginx configuration files. It tests the SSL configuration, includes a small fix for SMB daemon on Mac systems, and has an improved report.
Release Notes: This release adds additional auditing support for SuSE and others. It includes support for the Zypper package manager, including package gathering and checking for vulnerable packages. Several others tests related to AIDE, NTP, and the kernel have been improved.
Release Notes: This release has several warnings removed, new suggestions added, and an enhancement for the hardening index. Several controls have also been added to the website, to reflect the adjustments to Lynis.