forked from CISOfy/lynis
-
Notifications
You must be signed in to change notification settings - Fork 3
/
README
139 lines (89 loc) · 4.38 KB
/
README
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
================================================================================
Lynis - README
================================================================================
Author: Michael Boelen ([email protected]), CISOfy
Description: Security and system auditing tool
Web site: https://cisofy.com/lynis/
Development: May 2007 - Now
Support policy: See section 'Support'
Documentation: See web site, README, FAQ and CHANGELOG file
================================================================================
*** NOTE ***
The website contains the latest documentation
See https://cisofy.com/documentation/lynis/
[+] Introduction
-------------------------------
Lynis is an auditing tool which tests and gathers (security) information from
Unix based systems. The audience for this tool are security and system
auditors, network specialists and system maintainers.
Some of the (future) features and usage options:
- System and security audit checks
- Compliance testing
- File integrity monitoring
- System and file forensics
- Usage of templates/baselines (reporting and monitoring)
- Extended debugging features
Everyone is free to use Lynis under the conditions of the GPL v3 license (see
LICENSE file).
========================
Quick facts
========================
- Name: Lynis
- Type: audit, security, hardening, forensics tool
- License: GPL v3
- Language: Shell script
- Author: Michael Boelen, CISOfy
- Web site: https://cisofy.com
- Required permissions: root preferred, not needed
- Other requirements: write access to /tmp
[+] Installation
-------------------------------
Lynis doesn't have to be installed, so it can be used directly from a
(removable) disk. If you want the program to be installed, use one of the
following methods:
- Create a custom directory (ie. /usr/local/lynis) and unpack the tarball
(tar xfvz lynis-version.tar.gz) into this directory.
- Create a RPM package by using the lynis.spec file (see web site)
run 'rpmbuild -ta lynis-version.tar.gz' (= build RPM package)
run 'rpm -ivh <filename>' (= install RPM package)
See online documentation for detailed instructions.
[+] Supported systems
-------------------------------
Since the complexity of auditing different systems and platforms, Lynis is
developed on BSD and Linux.
This tool is tested or confirmed to work with at least:
AIX, Linux, FreeBSD, OpenBSD, Mac OS X, Solaris. See website for the full
list of tested operating systems.
[+] Usage
-------------------------------
See online documentation for more information about using Lynis.
[+] Development and Bugs
-------------------------------
If you have input to improve Lynis, let us know via:
* GitHub - https://github.com/CISOfy/lynis
* E-mail - [email protected]
Contributions are appreciated and can be done via GitHub. See CONTRIBUTIONS.md
for more information about how to submit them.
[+] Support
-------------------------------
Lynis is tested on the most common operating systems. The documentation (README,
FAQ) and the debugging information in the log file should cover most questions and
problems. Bugs can be reported via GitHub, or sending an e-mail to the lynis-dev
address above.
Commercial support is available and provided by CISOfy. For more information use
the contact address on https://cisofy.com/contact/.
[+] Upgrade to Lynis Enterprise
-------------------------------
Individuals and companies which use this software for more than 10 systems, should
think about the value of this tool in their job. To support ongoing development on
this tool we have a commercial version available. Lynis Enterprise Suite uses
Lynis to audit systems, but also provides malware scanning, intrusion detection
and has additional guidance. For all features, please see our website:
https://cisofy.com/lynis-enterprise/
[+] Thanks
-------------------------------
Thanks to the community for using and supporting open source software.
Many comments, bugs/patches and questions are the key to success and ongoing
motivation in developing tools like this.
================================================================================
Lynis - Copyright 2007-2016, Michael Boelen, CISOfy - https://cisofy.com