Skip to main content

Getting Started with Radar, TuxCare's Linux Vulnerability Scanner

I wrote this one for TuxCare, and it starts with a story from my SysAdmin days: a compliance report where the scanner flagged dozens of CVEs I had already patched, and I burned three hours writing “false positive” notes. Radar is the tool I wish I’d had back then, so I wanted to walk through installing it and running that first scan.

Originally published on TuxCare Read the full article →

A few things I wanted people to walk away with:

  • Radar is patch-aware, so it knows what you’ve already fixed. It recognizes vulnerabilities already neutralized by rebootless patching or extended lifecycle support and leaves them out of your report entirely.
  • Installation is deliberately low-friction. It runs as a lightweight CLI on a cron schedule, needs no root access or open ports, and can scan as the unprivileged nobody user.
  • The prioritization does the triage for you. Instead of a wall of red, Radar uses AI-assisted risk scoring to surface what is actually exploitable in your environment.

If you’ve ever spent a Saturday night justifying patches you already applied, this is the walkthrough I wanted you to have.