lynis-security-audit.md

Security audit with Lynis

Lynis is an open source security auditing tool. Lynis is light-weight and easy to use.

References:

• Official project page
• GitHub project page

Installation

Although Lynis is available in most of Linux package managers - its installation is not required, as it written in shell script.

Download script (clone from github):

git clone https://github.com/CISOfy/lynis

Go to cloned directory:

cd lynis/

Run script:

./lynis audit system

To run security audit against docker, run:

lynis audit dockerfile <path/to/docker>

Further reading:

• Use RKHunter (Rootkit Hunter) to scan OS for vulnerabilities
• Basic firewall with iptables