-->

Linux Hardening with Lynis

Lynis is a powerful open source auditing tool for Unix/Linux like operating systems. It scans the system for security information, general system information, installed software information, configuration mistakes, security issues, user accounts without password, wrong file permissions, firewall auditing, etc.

Lynis is also one of the most trusted automated auditing tools for software patch management, malware scanning and vulnerability detecting in Unix/Linux based systems. This tool is useful for auditors, network and system administrators, security specialists and penetration testers.

Installing Lynis in Ubuntu

This application doesn’t require any installation, it can be used directly from any directory. So, it’s a good idea to create a custom directory for Lynis:

sudo mkdir /usr/local/lynis

Download the stable version of Lynis from the website and unpack it:

cd /usr/local/lynis

sudo wget https://cisofy.com/files/lynis-2.4.0.tar.gz

image

Read more »
1 comments
Labels: ,

Linux Hardening with Tiger

Tiger is a security tool that can be used both as a security audit and as an IDS. It supports multiple UNIX platforms and it is free and provided under a GPL license.

image

    Check all the details on the official website.

    Installing Tiger in Ubuntu

    Install the application by running the command:

    sudo apt-get install tiger

    image

    Read more »
    1 comments
    Labels: ,

    Windows 7 Hardening (Part II)

    Enhanced Mitigation Experience Toolkit

    EMET is a free tool built to offer additional security defenses against vulnerable third party applications and assorted vulnerabilities. EMET helps prevent vulnerabilities in software from being successfully exploited by using security mitigation technologies. These technologies function as special protections and obstacles that an exploit author must defeat to exploit software vulnerabilities. These security mitigation technologies work to make exploitation as difficult as possible to perform but do not guarantee that vulnerabilities cannot be exploited.

    Download the tool here

    image

    and the User’s guide here.

    image

    Read more »
    2 comments
    Labels: , ,
    Subscribe to: Posts (Atom)