About Linux Audit

If you are interested in Linux security, this is the place for you. The internet has many resources to offer, but the high-quality content is hard to find. The focus of this blog is Linux and UNIX security. Most articles will be about auditing, system hardening, and compliance.


Our goal is to write high-quality content and make it freely available. This way you can use it to secure your systems. Missing a particular subject on the blog or found something that is relevant? Let us know!

Who is writing?

Many of the articles are written by security specialist Michael Boelen. Michael is a security developer and founder of CISOfy. He covers topics within Linux security, from system hardening to compliance and regulations.

About CISOfy

This blog is sponsored by CISOfy. Resources are invested into this blog to make Linux security accessible to a wider audience, from system administrators to auditors and developers.


We update this blog almost every week. If you want to stay ahead of your colleagues, tune in with a feed reader! Receive all latest posts via an RSS feed reader. If you are on Twitter, then follow @linuxaudit.

Guest bloggers

We are open for submissions from other bloggers. Share your knowledge with the help of our growing network.

Benefits for you

  • Your name will be used as author name
  • Get more appreciation of your work by sharing it with the community
  • More readers due to our focused expertise field (Linux security)
  • Have others recognize your work, which can boost your career
  • Get synced into the RSS feed of many readers

Rules for guest posts

We like to keep things simple, but have a few rules to ensure quality for our readers:

  • Minimal 1200 words
  • Focus on Linux/Unix, with at least some security related subject
  • No promotion for commercial services or products
  • Submissions are exclusive and may be edited before publication
  • Outgoing links are only allowed to relevant resources
  • You can include a small biography

Ready to start? Send an email to blog @ cisofy.com with your idea.


Your comments, ideas, and feedback are welcome! If there is a particular subject you want to see covered in an article, then contact us. Please send us an email at blog @ cisofy.com or via Twitter @linuxaudit

About CISOfy

Software solutions

Lynis (Linux/Unix auditing tool) screenshot

Screenshot of a Unix security audit performed with Lynis.


Lynis is a battle-tested technical security audit tool. It is open source, freely available, and used by system administrators all over the world. Other users include IT auditors, security professionals like pentesters. Lynis can also be used as a client component in the Lynis Enterprise solution.

Lynis Enterprise Suite

For those who maintain more than 10 systems, there is the Lynis Enterprise Suite. It is much more than just Lynis. It includes a central management interface, additional plugins for Lynis, reporting capabilities, a custom implementation guide and more helpful information. For example, it contains extended information regarding each security control. Besides that, it will show you how to solve a finding, manually or with ready-to-use hardening snippets.