Linux security audit tools
Technical auditing tools help to discover potential issues on Linux by performing an in-depth scan. On this page we list the need for regular auditing and the related tools.
Technical auditing tools for Linux provide valuable information about the state of a Linux system. It is similar to a health scan for your body, having your car checked for issues. Tools in this category typically go through the file system and check related file permissions. Additionally, they may look at running processes and configuration files, to determine the overall security posture of the system.
Auditing tools for Linux are usually closely related to Linux system hardening. This process of improving system defenses can be costly. A good auditing tool helps to define what can be improved and how to achieve this.
Within this category of tools, a warning is warranted. The number of high-quality tools for Linux auditing is limited. Our advice is to use a popular tool with good community support. Many new projects were promising but had their development stalled very early.
Linux security audit tools are typically used for configuration audit, IT audit, system hardening.
Users for these tools include auditors, security professionals, system administrators.
|Tool||Type||Description||Latest release||Release date||Score|
|Lynis||Security scanner and compliance auditing tool||Lynis is a security auditing tool for systems running Linux, macOS, or Unix. It can be used for security assessments and configuration audits.||2.6.6||July 6, 2018||100|
|Nix Auditor||System auditing tools||Nix-Auditor is a tool to help with scanning Linux systems and test them against CIS benchmarks.||2.0||Feb. 6, 2018||76|
|OpenSCAP||Suite with tools and security data||Tools to assist administrators and auditors with assessment, measurement and enforcement of security baselines||1.2.17||May 29, 2018||89|
|otseca||System information gathering tool||Otseca is a security tool that helps with gathering system information. It can be useful for penetration tests and security assessments, to automate some parts of the process.||1.0.5||June 28, 2018||85|
|sysechk||System auditing tool||System Security Checker, or sysechk, is a tool to perform a system audit against a set of best practices. It uses a modular approach to test the system.||0.9||Dec. 2, 2012||60|