Automated Configuration Analysis?

This page summarizes the projects mentioned and recommended in the original post on /r/linuxadmin
Security Compliance DevOps Audit Shell

WorkOS
Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • inspec

    InSpec: Auditing and Testing Framework

    • If you need the monitoring for compliance reason, Chef InSpec was designed for this exact usecase.

  • lynis

    Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

    • There is a security scanning tool call lynis. I highly recommend this tool and set it up to run as often as I like via cron/timer to run. I add in a bunch of self-made rules to monitor the files/settings that I need it to match on. The "report" can be if the score is other than ##, email the report to [[email protected]](mailto:[email protected]) (or a trigger to eTower if you want a shortcut without the manual override process).

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

    WorkOS logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts