Tool comparison of Linux vulnerability scanners
Systems running a Linux-based kernel can have a wide range of vulnerabilities. It starts with kernel security and goes up to vulnerabilities in software components and their configuration. Fortunately, there are many security tools available in this area. The only challenge with them is to find the right tool for the job, as each has its own focus area.
When looking for a vulnerability scanner on Linux, first determine what you like to target. Typically the tools running on the host can find more details than those that scan from the network. Although that part might be mitigated when a scan is performed with credentials provided.
While most tools in this area can find vulnerabilities, consider also your main purpose while scanning for them. For example, setting up proper software patch management might be more important than the act of finding vulnerabilities. In that case a vulnerability scanner can be used as a detection tool to check if processes are working as expected.
Lynis is a security auditing tool for systems running Linux, macOS, or Unix. It can be used for security assessments and configuration audits.
Tools to assist administrators and auditors with assessment, measurement and enforcement of security baselines
OpenVAS is a framework of several services and tools offering a vulnerability scanning and vulnerability management solution.
Vuls is a vulnerability scanner for Linux and FreeBSD. It is written in Go, agentless, and can use a remote login to find any software vulnerabilities. It has multiple levels of scanning, from a fast scan up to a deep scan with extensive analysis.
Salt-scanner is Linux vulnerability scanner based on Salt Open and Vulners audit API. It has Slack notifications and JIRA integration.
|Tool page (last updated)|