Lynis v2.4.0 Released

Lynis v2.4.0 Released

Lynis is a security auditing for UNIX derivatives like Linux, Mac OS X, BSD, and Solaris. It performs an in-depth security scan on the system itself, with the goal to detect issues and provide tips for further system hardening. It will also scan for general system information, vulnerable software packages, and possible configuration issues. Lynis is commonly used by people in the “blue team” to assess the security defenses of their systems.

Main goals:

  • Automated security auditing
  • Compliance testing (e.g. PCI-DSS, HIPAA)
  • Vulnerability detection

The software aims to also assist with:

  • Configuration management
  • Software patch management
  • System hardening
  • Penetration testing
  • Malware scanning
  • Intrusion detection

Changelog v2.4.0

New:

  • New group “system integrity” added
  • Support for clamconf utility
  • Chinese translation (language=cn)
  • New command “upload-only” to upload just the data instead of a full audit
  • Enhanced support for macOS, including HostID2 generation for macOS
  • Support for CoreOS
  • Detection for pkg binary (FreeBSD)
  • New command: lynis show hostids (show host ID)
  • New command: lynis show environment (hardware, VM, or container type)
  • New command: lynis show os (show operating system details)

Changes:

  • Several new sysctl values have been added to the default profile
  • Existing tests have been enhanced to support macOS

Tests:

  • AUTH-9234 – Support for macOS user gathering
  • BOOT-5139 – Support for machine roles in LILO test
  • BOOT-5202 – Improve uptime detection for macOS and others
  • FIRE-4518 – Improve pf detection and mark as root-only test
  • FIRE-4530 – Don’t show error on screen for missing IPFW sysctl key
  • FIRE-4534 – Check Little Snitch on macOS
  • INSE-8050 – Test for insecure services on macOS
  • MACF-6208 – Allow non-privileged execution and filter permission issues
  • MALW-3280 – Detection for Avast and Bitdefender daemon on macOS
  • NETW-3004 – Support for macOS
  • PKGS-7381 – Improve test for pkg audit on FreeBSD
  • TIME-3104 – Chrony support extended

Full Changelog: here

[button size=large style=round color=red align=none url=https://github.com/CISOfy/lynis]Download Lynis v2.4.0[/button]

MaxiSoler

www.artssec.com @maxisoler
Unveiling the Awesome Lineup for Black Hat MEA Arsenal 2023 in Riyadh, KSA

Unveiling the Awesome Lineup for Black Hat MEA Arsenal 2023 in Riyadh, KSA

Announcing the First Black Hat / ToolsWatch SecTor Toronto 2023 Arsenal Tools and Their Impact on the Community

Announcing the First Black Hat / ToolsWatch SecTor Toronto 2023 Arsenal Tools and Their Impact on the Community

Top 10 Most Used MITRE ATT&CK Tactics & Techniques In 2020

Top 10 Most Used MITRE ATT&CK Tactics & Techniques In 2020

Top 10 Most Exploited Vulnerabilities in 2020

Top 10 Most Exploited Vulnerabilities in 2020

vFeed, Inc. Introduces Vulnerability Common Patch Format Feature

vFeed, Inc. Introduces Vulnerability Common Patch Format Feature

Efficiency of the Vulnerability Response With vFeed Intelligence

Efficiency of the Vulnerability Response With vFeed Intelligence