RC Logr 20190408 145501

Monday, 8 Apr, 2019

Today I learned about «Lynis», an agentless security auditing tool for *nix-based systems, that lets you do compliance testing e.g. for HIPAA or SOX, pen testing, vulnerability detection to help you harden systems. I ran it and it appears to work well and returns useful suggestions after it runs, e.g. install this, disable that, confirm the other. 🤖

This is what the first few lines of the results look like:

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
[+] System Tools
------------------------------------
  - Scanning available tools...
  - Checking system binaries...

[+] Program Details
------------------------------------
  - Verbose mode                                              [ YES ]
  - Debug mode                                                [ NO ]

[+] Plugins (phase 1)
------------------------------------
 Note: plugins have more extensive tests and may take several minutes to complete

  - Plugins enabled                                           [ NONE ]

[+] Boot and services
------------------------------------
  - Service Manager                                           [ launchd ]
    - Boot loader                                             [ NONE FOUND ]

[+] Kernel
------------------------------------
...

(via @binitamshah on Twitter)

RC Logr 20190408 145501 - Today I learned about «Lynis», … 2019-04-08 14:55:01 +0900 +0900 Rick Cogley

Rick Cogley's Tech Logr

Short Technical Laser Bursts %%

RC Logr 20190408 145501

Monday, 8 Apr, 2019