# System Security Scanning ## Lynis A battle-tested security tool for hardening Linux, macOS, and Unix-based systems. - **Website:** [cisofy.com/lynis](https://cisofy.com/lynis/) - **GitHub:** [CISOfy/lynis](https://github.com/CISOfy/lynis) - Open source (GPL license) since 2007 ### Capabilities - Comprehensive system health scan - Security hardening recommendations - Compliance testing (PCI-DSS, HIPAA, GDPR, etc.) - Vulnerability detection - Audit log analysis ### Common Commands ```bash # Run full scan sudo lynis audit system # Quick test run lynis audit system --quick # Generate report lynis report controls ```