Lynis v1.6.3 Released

Lynis v1.6.3 Released

Lynis is an auditing tool which tests and gathers (security) information from Unix based systems. The audience for this tool are security and system auditors, network specialists and system maintainers.

Some of the (future) features and usage options:

  • System and security audit checks
  • File Integrity Assessment
  • System and file forensics
  • Usage of templates/baselines (reporting and monitoring)
  • Extended debugging features

This tool is tested or confirmed to work with at least: AIX, Linux, FreeBSD, OpenBSD, Mac OS X, Solaris. See website for the full list of tested operating systems.

lynis-screenshot

 

Changelog v1.6.3

New:

  • Added tests for Shellshock bash vulnerability [SHLL-6290]
  • Added test to determine if Snoopy is used [ACCT-9636]
  • New test for qdaemon configuration file [PRNT-2416]
  • Test for GRUB boot loader password [BOOT-5122]
  • New test for qdaemon printer jobs [PRNT-2420]
  • Added ClamXav test for Mac OS X [MALW-3288]
  • Gentoo vulnerable packages test [PKGS-7393]
  • New test for qdaemon status [PRNT-2418]
  • Gentoo package listing [PKGS-7304]
  • Running Lynis without root permissions will start non-privileged scan
  • Systemd service and timer example file added
  • Added grub2-install to binaries

Changes:

  • Adjustments so insecure SSL protocols are detected in nginx config [HTTP-6710]
  • Directories will be skipped when searching for nginx log files [HTTP-6720]
  • Only gather unique name servers from /etc/resolv.conf [NAME-2704]
  • Properly detect mod_evasive on Gentoo and others [HTTP-6640]
  • Improved swap partition detection in /etc/fstab [FILE-6336]
  • Improvements to kernel detection (e.g. Gentoo) [KRNL-5830]
  • Test for built-in security options in YUM [PKGS-7386]
  • Improved boot loader detection for GRUB2 [BOOT-5121]
  • Split GRUB test into two tests [BOOT-5122]
  • Added Mac OS uptime check [BOOT-5202]
  • Improved GetHostID function for systems having only ip binary
  • Improved testing for symlinked binary directories
  • Minor adjustments to log output
  • Renamed dev directory to extras

 

More Information:

[button size=large style=round color=red align=none url=http://cisofy.com/downloads]Download Lynis v1.6.3[/button]

MaxiSoler

www.artssec.com @maxisoler
GISEC Armory Edition 1 Dubai 2024 – Call For Tools is Open

GISEC Armory Edition 1 Dubai 2024 – Call For Tools is Open

Black Hat Arsenal 2024 Next Stop Singapore !

Black Hat Arsenal 2024 Next Stop Singapore !

ToolsWatch introducing Armory at Gisec 2024 in Dubai: A New Arena for Cybersecurity Open Source Tools Announced

ToolsWatch introducing Armory at Gisec 2024 in Dubai: A New Arena for Cybersecurity Open Source Tools Announced

Unveiling the Awesome Lineup for Black Hat MEA Arsenal 2023 in Riyadh, KSA

Unveiling the Awesome Lineup for Black Hat MEA Arsenal 2023 in Riyadh, KSA

Announcing the First Black Hat / ToolsWatch SecTor Toronto 2023 Arsenal Tools and Their Impact on the Community

Announcing the First Black Hat / ToolsWatch SecTor Toronto 2023 Arsenal Tools and Their Impact on the Community

Top 10 Most Used MITRE ATT&CK Tactics & Techniques In 2020

Top 10 Most Used MITRE ATT&CK Tactics & Techniques In 2020