Tools compared: Linux auditing tools

Finding the right tool for the job can be difficult task. This sheet compares LUNAR, Lynis, OpenSCAP, Tiger and YASAT.

Tool comparison: LUNAR, Lynis, OpenSCAP, Tiger and YASAT
LUNARLynisOpenSCAPTigerYASAT
Description

LUNAR is a security scanner that runs on a Linux system or other flavors of Unix. It provides insights on what can be done to harden the system.

Lynis is a security auditing tool for systems running Linux, macOS, or Unix. It can be used for security assessments and configuration audits.

Tools to assist administrators and auditors with assessment, measurement and enforcement of security baselines

Tiger a security audit and intrusion detection tool for flavors of Unix

YASAT describes itself as another simple stupid audit tool to test Linux systems. It has many tests for checking the security configuration of the system.

Dependencies
Strenghts

The source code of this software is available

More than 50 contributors, Commercial support available, More than 4000 GitHub stars, Used language is shell script, Very low number of dependencies, Project is mature (10+ years), The source code of this software is available

More than 25 contributors, The source code of this software is available, Supported by a large company

Used language is shell script, Project is mature (10+ years), The source code of this software is available

Used language is shell script

Weaknesses

No updates for a while

No updates for a while

Programming language(s)

Shell script

Shell script

C

Shell script

Shell script

Last release

Unknown

2.7.5 (2019-06-24)

1.3.1 (2019-06-13)

3.2.3 (2010-03-03)

848 (2016-08-30)

Tool page (last updated)

2018-04-17

2019-06-25

2019-09-11

2018-08-01

2018-08-01

Tool score

64

100

88

59

70

Download

Download

Download

Download

Download

Download

More information

LUNAR review

Lynis review

OpenSCAP review

Tiger review

YASAT review