#!/bin/bash
# WORK IN PROGRESS

AUDITORNAME="Michael Tanner"
REPORTFILE="report.log"
LOGFILE="audit.log"
LOGDIR="/tmp/PurpleAudit/Log"
REPORTOUTPUT=/Users/$(stat -f "%Su" /dev/console)/Desktop/MacReport.txt

sudo rm -f $REPORTOUTPUT
sudo rm -rf /tmp/PurpleAudit
export AUDITORNAME LOGDIR LOGFILE REPORTFILE

mkdir /tmp/PurpleAudit
mkdir -p /tmp/PurpleAudit/Log

cd /tmp/PurpleAudit

git clone https://github.com/CISOfy/lynis
cd lynis
sudo ./lynis audit system -Q --auditor "$AUDITORNAME" >> $REPORTOUTPUT
sudo ./lynis audit system --pentest --auditor "$AUDITORNAME" >> $REPORTOUTPUT

sudo bash -c "$(curl -fsSL https://raw.githubusercontent.com/PurpleComputing/helpful-scripts/main/SecScripts/test-lockdown.sh)" bash audit >> $REPORTOUTPUT

sudo chmod 777 /var/log/lynis-report.dat
sudo chmod 777 $REPORTOUTPUT

rm -rf /tmp/PurpleAudit