lynis
« Back to VersTracker
Description:
Security and system auditing tool to harden systems
Type: Formula  |  Latest Version: 3.1.6@0  |  Tracked Since: Oct 23, 2025
Links: Homepage  |  @cisofy  |  formulae.brew.sh
Category: Security
Tags: security auditing hardening compliance system-audit vulnerability
Install: brew install lynis
About:
Lynis is a comprehensive security auditing tool for UNIX-based systems that performs hundreds of individual security checks. It scans for system configurations, software vulnerabilities, and compliance issues to identify security weaknesses and provide actionable hardening recommendations. The tool is non-intrusive and suitable for both automated security audits and manual system assessments.
Key Features:
  • Comprehensive security scanning with hundreds of tests
  • Detailed remediation guidance for discovered issues
  • Support for Linux, macOS, BSD, and Solaris systems
  • Low-impact, non-intrusive scanning methodology
  • Automated compliance checking and reporting
Use Cases:
  • System hardening and security baseline verification
  • Compliance auditing for security standards like CIS benchmarks
  • Automated security monitoring in CI/CD pipelines
  • Pre-deployment security assessments
Alternatives:
  • OpenSCAP – More compliance-focused with NIST-certified scanner, but Lynis is lighter and more user-friendly
  • rkhunter – Rootkit detection specialist, while Lynis provides broader system security auditing
  • chkrootkit – Focused on rootkit detection only, Lynis offers comprehensive security assessment
Version History
Detected Version Rev Change Commit
Oct 23, 2025 2:12pm 0 VERSION_BUMP b198e452
Dec 16, 2024 11:03am 0 VERSION_BUMP 0cca073c
Sep 26, 2024 4:29pm 0 VERSION_BUMP 97c60431
Sep 26, 2024 3:58pm 0 VERSION_BUMP 638a2dc5
Sep 14, 2024 6:08pm 0 VERSION_BUMP e26f21b5