InfoSec Pentesting Tools Vulnerability Analysis

Lynis – Security Auditing Tool for Unix/Linux

Lynis is a security auditing tool for Unix and Linux based systems. It performs in-depth security scans, with almost no configuration, This tool commonly used by network administrator/system admin, security professionals and pentester/auditor to evaluate linux/unix system.

Requirements: Shell and basic utilities

Permissions: Root permissions or normal user

Operating System Supported:

  • AIX
  • FreeBSD
  • HP-UX
  • Linux
  • Mac OS
  • NetBSD
  • OpenBSD
  • Solaris

 

The new version of Lynis  Security Auditing Tool was already release: Lynis 2.1.0

Changelog:

1. Installation via direct download

Create a Directory

2. Download Lynis here: https://cisofy.com/download/lynis/

3. Unpack the tarball

4. After unpacking, it is time to run Lynis for the first time.

Lynis can run without any preconfiguration. Configuration and fine-tuning is possible though and will be covered in later sections. For now we will run a basic scan:

Common parameters:

Below the most commonly used parameter when running Lynis.

 

Parameter Abbreviated Description
–auditor “Given name Surname” Assign an auditor name to the audit (report)
–checkall -c Start the check
–check-update Check if Lynis is up-to-date
–cronjob Run Lynis as cronjob (includes -c -Q)
–help -h Shows valid parameters
–manpage View man page
–nocolors Do not use any colors
–pentest Perform a penetration test scan (non-privileged)
–quick -Q Don’t wait for user input, except on errors
–quiet Only show warnings (includes –quick, but doesn’t wait)
–reverse-colors Use a different color scheme for lighter backgrounds
–version -V Check program version (and quit)

Tips

  • If Lynis is not installed as package (with included man page), use –man or nroff -man ./lynis.8
  • For systems where the shell background is light, use –nocolors or –reverse-colors
  • Use –dump-options to see all available parameters of Lynis
I started blogging around 2011 at #Ubuntupirates, #ProjectX and #pir8geek, I’m currently working as Network/Linux SysAdmin.

I’m a Linux,opensource advocate and interested in network security and InfoSec.

Leave a Reply