linux-security

There are 13 repositories under linux-security topic.

trimstray / the-practical-linux-hardening-guide
This guide details creating a secure Linux production system. OpenSCAP (C2S/CIS, STIG).
audit centos checklist cis guide hardening linux linux-hardening linux-security manual openscap pci-dss redhat-enterprise-linux security
9706
bytedance / Elkeid
Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and serverless. It is derived from ByteDance's internal best practices.
hids security rasp edr cwpp linux-security
Language:Go 2112
sleventyeleven / linuxprivchecker
linuxprivchecker.py -- a Linux Privilege Escalation Check Script
oscp oscp-tools htb linux-privilege-escalation linux-security pentesting security ctf-tools pentest-tools hackthebox
Language:Python 1490
anti-ddos / Anti-DDOS
🔒 Anti DDOS | Bash Script Project 🔒
anti-ddos shell shell-script shell-scripts shellscript bash bash-script security security-tools configuration tool linux linux-security linux-app linux-desktop linux-server linux-distribution linux-security-module ddos-attacks anti-ddos-protection
Language:Shell 1111
microsoft / avml
AVML - Acquire Volatile Memory for Linux
rust memory-forensics linux-security
Language:Rust 815
nluedtke / linux_kernel_cves
Tracking CVEs for the linux Kernel
cve linux-kernel tracking-cves security-vulnerability tracker security-audit linux linux-security
Language:Vue 725
Netflix-Skunkworks / stethoscope-app
A desktop application that checks security-related settings and makes recommendations for improvements without requiring central device management or automated reporting.
electron endpoint-security hacktoberfest javascript linux-security macos-security security usable-security windows-security
Language:JavaScript 456
gustavo-iniguez-goya / opensnitch
OpenSnitch is a GNU/Linux application firewall
application-firewall linux-firewall linux-security linux firewall network-analysis network-monitoring anomaly-detection iptables
Language:Python 395
EmreOvunc / Linux-System-Management-Scripts-Tricks
Linux Security & Linux Hardening & Linux Management & Linux Configuration
linux-server linux-system-administration linux-shell linux-security iptables dhcp-servers linux-users linux-network swap-space linux-raid linux-administration linux-hardening linux-dhcp linux-dns linux-management wordpress-installation squid-proxy squid3 linux-proxy hacktoberfest
Language:Shell 135
geo-nft
wirefalls / geo-nft
Bash script to create nftables sets of country specific IP address ranges for use with firewall rulesets. The project provides a simple and flexible way to implement geolocation filtering with nftables. It can be a useful tool to reduce the chance of malware, ransomware and phishing attempts as well as mitigating the effects of DDoS attacks.
nftables nftables-geoip netfilter firewalls firewall-rules firewall-configuration linux-security linux-server geoip-database nftables-rules geo-ip geoip-location ransomware-prevention malware-protection phishing-protection ddos-mitigation anti-malware ddos-protection anti-phishing ip-geolocation
Language:Shell 111
jwillyamz / ezEmu
See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)
purpleteam adversary-emulation security-testing linux-security mitre-attack
Language:C# 102
tomwechsler / Securing_Linux_Systems
Linux security with three different distributions (Rocky Linux, Ubuntu and openSUSE)!
linux linux-security opensuse rockylinux security ubuntu
Language:Shell 64
Andromeda1957 / LinPwn
Interactive Post Exploitation Tool
enumeration linux-security post-exploitation privilege-escalation security security-tools
Language:C++ 36
TimesysGit / meta-timesys
Vulnerability management tool that provides Yocto SBOM generation and CVE Analysis of target images.
cve yocto-security security-vulnerability vigiles-cve-scanner linux-security yocto-linux-security cve-scanning yocto-cve-analysis yocto-sbom spdx-sbom
Language:BitBake 31
node3 / Linux-Security-Module
Kernel programming: This is a simple kernel module implementation for enforcing access control policies using Linux Security Module framework.
linux-kernel linux-security lsm
Language:C 29
parazyd / protecc
Linux kernel module to fight against police terror
police-terror killswitch physical-security kernel-module linux-security linux-kernel
Language:C 29
bcoles / so-check
Checks for search order privilege escalation vectors in system environment, system shared objects and executable files in $PATH.
privesc linux-audit linux-security
Language:Shell 16
bcoles / linux-audit
Lazily wraps various Linux system auditing tools
linux-audit linux-security
Language:Shell 14
Alterant / Tutorials
Easy way to automate the complex task
qnx qnx7 security-vulnerability security-tools security-automation security-audit security-testing security-hardening security-scanner hacking linux linux-security linux-hacking-tools yocto-linux-security pentesting security-team vulnerability-assessment
Language:HTML 12
foxcpp / audit_pretty
Linux Auditing System logs pretty printer
linux-audit linux-security security
Language:Python 12
TimesysGit / vigiles-openwrt
Vulnerability management tool that provides OpenWRT SBOM generation and CVE Analysis of target images.
openwrt cve cve-scanning linux-security openwrt-cve openwrt-security openwrt-sbom spdx-sbom
Language:Python 8
TimesysGit / vigiles-buildroot
Vulnerability management tool that provides Buildroot SBOM generation and CVE Analysis of target images.
cve buildroot linux-security cve-scanning buildroot-cve buildroot-cve-analysis buildroot-security buildroot-sbom spdx-sbom
Language:Python 7
Truvis / Splunk_TA_Truvis_Linux_History
linux splunk splunk-application splunk-addon history linux-shell linux-app linux-security linux-audit audit auditing audit-log history-management
7
Brets0150 / DiamondHardLAMP
A script to build and manage a Diamond Hard secure Linux, Apache MariaDB, PHP(LAMP) Webhosting server. Builds and configure a LAMP stack with AppArmor, ModSecurity, ClamAV, LetsEncrypt, Fail2Ban, OSSEC, and UnattendedUpgrades.
lamp-stack lamp-setup lamp-server security-tools linux-hardening ubuntu-hardening linux-security hardening
Language:Shell 6
foxcpp / ttyprompt
Ask for passwords on different tty to combat X11 keyloggers
gnupg pinentry linux-security
Language:Go 6
vivekcheravally / Linux-Security
Preventing unauthorized invocation of open system call in Linux by running processes in sand-boxed environments using capability based authorization implemented in user space.
linux security-hardening operating-system capability-based access-control sandboxing linux-security userspace userspace-libraries wrapper-library
Language:C 5
Yanixos / sic
Linux File Integrity Checker
linux-security file-checksum file-integrity-monitoring
Language:Python 5
Connorapple / PortScanBlocker
A Cybersecurity tool to detect and block IPs conducting port scans on a host machine.
cybersecurity cyber-security port-scanning ip-blocker ip-blocking iptables-firewall iptables linux-security tcp
Language:Python 4
foxcpp / secutils
Random security-related scripts for Linux systems
security linux-security
Language:Python 4
HarryR / cummiboot
Encrypted PCR locked EFI Linux bootloader with Microsoft Pluton
efi linux-security secureboot tpm2
Language:C 4
ramirak / LinuxSecuritySuite
Secure your Linux machine by blocking unwanted traffic and monitor your system
iptables-firewall linux-security packet-filtering python3 security-suite block-list network-discovery snapshot-backup
Language:Python 4
samuelerickson977 / initharden
A hardening script for Ubuntu 22.04 x86-64
linux linux-hardening linux-security ubuntu2204lts
Language:Shell 3
vrikodar / Wizard
A Full Fledged iptables Firewall automation framework For Linux with Log monitoring..
firewall-rules linux-firewall blockip firewall-management firewall-configuration firewalls iptables-firewall iptables-configuration iptables-rules netfilter-queue netfilter-persistent firewall linux-security network-security-monitoring network-security
Language:Shell 3
felipefacundes / Arch
How to Install ArchLinux in an easy and intuitive way
arch-linux archlinux linux linux-app linux-desktop linux-kernel linux-security linux-security-module linux-server linux-service linux-setup linux-shell
Language:HTML 2
LastLog-Audit
franckferman / LastLog-Audit
📝 LastLog Audit: Security Login Activity Analyzer.
audit lastlog lastlogin lastlogontime linux linux-forensics linux-security log log-analysis log-management log-parsing logging parser parsing python python-for-security python3 forensic-analysis forensics forensics-investigations
Language:Python 2
Virusold0607 / Python-Scan-Blocker
A Cybersecurity tool to detect and block IPs conducting port scans on a host machine.
cyber-security cybersecurity ip-blocker ip-blocking iptables iptables-firewall linux-security port-scanning tcp
Language:Python 2

linux-security

trimstray / the-practical-linux-hardening-guide

bytedance / Elkeid

sleventyeleven / linuxprivchecker

anti-ddos / Anti-DDOS

microsoft / avml

nluedtke / linux_kernel_cves

Netflix-Skunkworks / stethoscope-app

gustavo-iniguez-goya / opensnitch

EmreOvunc / Linux-System-Management-Scripts-Tricks

wirefalls / geo-nft

jwillyamz / ezEmu

tomwechsler / Securing_Linux_Systems

Andromeda1957 / LinPwn

TimesysGit / meta-timesys

node3 / Linux-Security-Module

parazyd / protecc

bcoles / so-check

bcoles / linux-audit

Alterant / Tutorials

foxcpp / audit_pretty

TimesysGit / vigiles-openwrt

TimesysGit / vigiles-buildroot

Truvis / Splunk_TA_Truvis_Linux_History

Brets0150 / DiamondHardLAMP

foxcpp / ttyprompt

vivekcheravally / Linux-Security

Yanixos / sic

Connorapple / PortScanBlocker

foxcpp / secutils

HarryR / cummiboot

ramirak / LinuxSecuritySuite

samuelerickson977 / initharden

vrikodar / Wizard

felipefacundes / Arch

franckferman / LastLog-Audit

Virusold0607 / Python-Scan-Blocker