I’ve written and used a bunch of Linux OS auditing tools in my time.
Lynis does a fairly thorough job of checking such things as file system, network services, processes, kernel, security frameworks like selinux, etc.
Lynis is pretty cool and has the option of adding plugins for your own custom checks.
Download a copy from https://cisofy.com/download/lynis/
youremindmeofmymother 