lynis
lynis copied to clipboard
CISOfy
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Making sure that the "Security check failed" message is also shown when running in non-privileged mode (not root). A few notes: - I included data_upload among the 6 files to...
Managers love PDFs. I am familiar with just 2 commercial pentest companies, but both provide a detailed report as PDF. Sorry to say, but an ASCII printout of lynis might...
**Is your feature request related to a problem? Please describe.** In the `Checking remote logging` test, it doesn't seem that lynis is aware of AWS CloudWatch Agent, which can be...
**Describe the bug** `kernel.perf_event_paranoid` in the Kernel hardening "Comparing sysctl key pairs with scan profiles" stage expects a value of 3 in a default configuration. It seems that It should...
This PR: - adds support for perf_event_paranoid=4 - closes https://github.com/CISOfy/lynis/issues/1376
**Describe the bug** The test, *MACF-6234 (Check SELINUX status)* has dependencies on more binaries than are checked by the pre-requisites check. Specifically, the variable `${SEMANAGEBINARY}` is used to build a...
It's not installed everywhere, causing this error message: /usr/share/lynis/include/tests_mac_frameworks: line 161: permissive: command not found /usr/share/lynis/include/tests_mac_frameworks: line 162: permissive: command not found
* 'This release is more than 4 months old. Could you check the website or GitHub to see if there is an update available? [LYNIS]' Suggestion impossible to disable, even...
**Describe the bug** The scoring is unequal: ```bash # Show result if [ ${REMOTE_LOGGING_ENABLED} -eq 0 ]; then Report "remote_syslog_configured=0" LogText "Result: no remote logging found" ReportSuggestion "${TEST_NO}" "Enable logging...
