LUNAR – UNIX Security Auditing Tool

LUNAR Lockdown UNix Auditing and Reporting is a script that generates a scored audit report of a Unix host’s security. It is based on the CIS Benchmark and other frameworks. Where possible there are references to the CIS and other benchmarks in the code documentation.

It will be possible to run the audit mode verification on the system without making any changes and this is useful to understand what are the pass / fail rate on the targeted host.

LUNAR - UNIX Security Auditing Tool
LUNAR – UNIX Security Auditing Tool

User may also perform a lockdown which will apply the hardening changes but this is not for AWS services audit. before running the lockdown it will be recommended to make a snapshot of the system or a restore point so in case that any service broken user may recover the system back.

The following Operating Systems are supported: Linux , RHEL 5,6,7 , Centos 5,6,7 ,Scientific Linux ,SLES 10,11,12, Debian, Ubuntu, Amazon Linux, Solaris (6,7,8,9,10 and 11), Mac OS X ,FreeBSD (needs more testing), AIX (needs more testing), ESXi (initial support – some tests).

There are support as well to the following services: AWS, Docker , Kubernetes (not complete), The AWS Services audit uses the AWS CLI, and as such requires a user with the appropriate rights. It does not currently support the lockdown capability, it only supports generating an audit report against the CIS benchmark.

You can read more and download this tool over here: https://github.com/lateralblast/lunar

Share