Lynis is an open-source security auditing tool for UNIX derivatives like Linux, Mac OS, BSD, other Unix-based operating systems, etc. Performing extensive health scans of systems that support System Hardening and Compliance Testing. An open-source software with GPL License. This tool also scans for general system information, vulnerable software packages, and configuration issues. It is useful for System Administrators, Auditors, and Security Professionals.
Lynis scanning is modular and opportunistic, it is used to test components like available system tools and their libraries. The advantage of the Lynis tool is there is no additional installations of tools are required so systems are clean. The more components discovered, the more extensive the audit will be. Using this method, Lynis can run with no dependencies.
Lynis Tool Installation:
Lynis is lightweight and most users install Lynis using a package that would require more time to install. There are various ways to install Lynis,
- Clone via GitHub
- OS Package Install
- Source Install
- Tarball
- Homebrew
- BSD ports
UNIX Distributions like Debian, Distro, Ubuntu, Mint, Fedora, Suse, OpenSUSE, Arch Linux, Manjaro etc. have Lynis Package by default. With this, it becomes easy for us to install them from the distribution repository using the package manager.