LYNIS – Security Auditing and Pen Tester tool

lynis

Lynis is an open source security tool and pen tester tool as well, which runs on UNIX-alike systems (Linux, macOS, BSD). It is a security auditing tool and its main purpose is to test security defenses and harden UNIX based systems. This performs the in-depth security scan on the system. It scans system info., vulnerable software, and other configuration issues. Besides the “blue team”, nowadays penetration testers also have Lynis in their systems.

Goals of LYNIS:

Its main goal is:
1. Automated security auditing
2. Compliance testing
3. Vulnerability detection

Lynis tool is used by System admins, Auditors, Security teams, Penetration testers and Security professionals. This tool also assists with Configuration and asset management, Software patch management, System hardening, Penetration testing , Intrusion detection.

Compatibility for OS:

This tool runs on almost all UNIX-based systems including:

  • AIX
  • FreeBSD
  • HP-UX
  • Linux
  • macOS
  • NetBSD
  • NixOS
  • OpenBSD
  • Solaris
  • and others.

It also runs with systems like the Raspberry Pi, IoT devices, and QNAP devices.

Auditing steps during typical scan:

  1. Initialization and basic checks
  2. Determine operating system and tools
  3. Search for available system utilities
  4. Check for Lynis update
  5. Run enabled plugins
  6. Run security tests per category
  7. Perform execution of your custom tests
  8. Report status of security scan

How to install LYNIS:

For Red Hat:
-systems running YUM, including CentOS, Fedora, Red Hat Enterprise Linux (RHEL).

$ yum install lynis

For Debian:
-systems running Debian, Linux Mint, Ubuntu, or other.

$ apt-get install lynis

For openSUSE:

$ zypper install lynis

Tools involved in lynis package:

root@kali:~# lynis -h

[ Lynis 1.4.1 ]

################################################################################
Lynis comes with ABSOLUTELY NO WARRANTY. This is free software, and you are welcome to redistribute it under the terms of the GNU General Public License.
See the LICENSE file for details about using this software.

Copyright 2007-2014 – Michael Boelen, http://cisofy.com
Enterprise support and plugins available via CISOfy – http://cisofy.com
################################################################################

[+] Initializing program
————————————
Scan options:
–auditor “<name>”            : Auditor name
–check-all (-c)                   : Check system
–no-log                              : Don’t create a log file
–profile <profile>               : Scan the system with the given profile file
–quick (-Q)                         : Quick mode, don’t wait for user input
–tests “<tests>”                  : Run only tests defined by <tests>
–tests-category “<category>” : Run only tests defined by <category>

Layout options:
–no-colors                         : Don’t use colors in output
–quiet (-q)                          : No output, except warnings
–reverse-colors                : Optimize color display for light backgrounds

Misc options:
–check-update                      : Check for updates
–view-manpage (–man)       : View man page
–version (-V)                           : Display version number and quit

See man page and documentation for all available options.

Exiting..

 

To download Lynis tool click here. 

Have something to say about this article? Comment below or share it with us on Facebook, Twitter or our Google+ Pages.

Also Read:  

Leave a Reply

Your email address will not be published. Required fields are marked *