User:Maffblaster/Drafts/lynis

From Gentoo Wiki
Jump to: navigation, search

Lynis is a free and open source security and system auditing tool. Lynis is written in POSIX shell which enables it to run on many Unix based systems[1] and has been released under the GPL.

Installation

Emerge

root #emerge --ask app-forensics/lynis

Removal

Unmerge

root #emerge --ask --unmerge app-forensics/lynis

Usage

Invocation

root #lynis --help
################################################################################
 Lynis comes with ABSOLUTELY NO WARRANTY. This is free software, and you are
 welcome to redistribute it under the terms of the GNU General Public License.
 See the LICENSE file for details about using this software.

 Copyright 2007-2015 - CISOfy, https://cisofy.com
 Enterprise support and plugins available via CISOfy
################################################################################

[+] Initializing program
------------------------------------

  Usage: lynis [options] mode


  Mode:

    audit
        audit system                  : Perform security scan
        audit dockerfile <file>       : Analyze Dockerfile

    update
        update info                   : Show update details
        update release                : Update Lynis release


  Scan options:
    --auditor "<name>"            : Auditor name
    --dump-options                : See all available options
    --no-log                      : Don't create a log file
    --pentest                     : Non-privileged scan (useful for pentest)
    --profile <profile>           : Scan the system with the given profile file
    --quick (-Q)                  : Quick mode, don't wait for user input
    --tests "<tests>"             : Run only tests defined by <tests>
    --tests-category "<category>" : Run only tests defined by <category>

  Layout options:
    --no-colors                   : Don't use colors in output
    --quiet (-q)                  : No output, except warnings
    --reverse-colors              : Optimize color display for light backgrounds

  Misc options:
    --debug                       : Debug logging to screen
    --view-manpage (--man)        : View man page
    --version (-V)                : Display version number and quit

  Enterprise options:
    --plugin-dir "<path>"         : Define path of available plugins
    --upload                      : Upload data to central node


  See man page and documentation for all available options.

Exiting..

See also

  • Sleuthkit - A collection of file system and media management forensic analysis tools.

External resources

References