linux-security
There are 96 repositories under linux-security topic.
trimstray/the-practical-linux-hardening-guide
This guide details creating a secure Linux production system. OpenSCAP (C2S/CIS, STIG).
bytedance/Elkeid
Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and serverless. It is derived from ByteDance's internal best practices.
sleventyeleven/linuxprivchecker
linuxprivchecker.py -- a Linux Privilege Escalation Check Script
anti-ddos/Anti-DDOS
π Anti DDOS | Bash Script Project π
microsoft/avml
AVML - Acquire Volatile Memory for Linux
nluedtke/linux_kernel_cves
Tracking CVEs for the linux Kernel
Netflix-Skunkworks/stethoscope-app
A desktop application that checks security-related settings and makes recommendations for improvements without requiring central device management or automated reporting.
gustavo-iniguez-goya/opensnitch
OpenSnitch is a GNU/Linux application firewall
EmreOvunc/Linux-System-Management-Scripts-Tricks
Linux Security & Linux Hardening & Linux Management & Linux Configuration
h2337/ghostscan
A modern, Rust-powered Linux scanner that unmasks hidden rootkits, stealthy eBPF tricks, and ghost processes in one fast sweep (45+ scanners)
wirefalls/geo-nft
Bash script to create nftables sets of country specific IP address ranges for use with firewall rulesets. The project provides a simple and flexible way to implement geolocation filtering with nftables. It can be a useful tool to reduce the chance of malware, ransomware and phishing attempts as well as mitigating the effects of DDoS attacks.
jwillyamz/ezEmu
See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)
tomwechsler/Securing_Linux_Systems
Linux security with three different distributions (Rocky Linux, Ubuntu and openSUSE)!
gensecaihq/Ubuntu-Security-Hardening-Script
This script automates the scanning process using the OpenSCAP Security Guid to hardening Ubuntu systems, aligning with DISA-STIG compliance for Ubuntu 24.04. LTS minimum. It includes a range of security enhancements and configurations designed to strengthen the security posture of Ubuntu servers.
TimesysGit/meta-timesys
Vulnerability management tool that provides Yocto SBOM generation and CVE Analysis of target images.
Andromeda1957/LinPwn
Interactive Post Exploitation Tool
nikhilpatidar01/Linux-Server
π§βπ» A comprehensive guide to Linux system administration, covering: π Commands π₯ User Management π Networking π Permissions π¦ Package Management π½ Disk Management π‘οΈ Security π€ Automation β
node3/Linux-Security-Module
Kernel programming: This is a simple kernel module implementation for enforcing access control policies using Linux Security Module framework.
parazyd/protecc
Linux kernel module to fight against police terror
password123456/linux-security-audit
Linux Security Audit Tool
bcoles/so-check
Checks for search order privilege escalation vectors in system environment, system shared objects and executable files in $PATH.
bcoles/linux-audit
Lazily wraps various Linux system auditing tools
Alterant/Tutorials
Easy way to automate the complex task
flashnuke/ssh-door
A stealth SSH backdoor leveraging PAM shared object (.so) injection to bypass authentication and gain SSH access.
elliotsecops/System-Monitor
A Bash script to monitor and display real-time CPU, memory, and disk usage of your system. The script refreshes every 5 seconds and includes error handling for robustness. // Un script Bash para monitorizar y mostrar en tiempo real el uso de CPU, memoria y disco de tu sistema. El script se actualiza cada 5 segundos e incluye gestiΓ³n de errores.
foxcpp/audit_pretty
Linux Auditing System logs pretty printer
Secret297-CODER-SOURCE/Sniff-NG
Sniff-NG β Python TUI tool for network scanning, ARP spoofing, and MITM attacks on local networks. Fast, user-friendly, with auto dependency install. For educational and penetration testing use only.
TimesysGit/vigiles-buildroot
Vulnerability management tool that provides Buildroot SBOM generation and CVE Analysis of target images.
TimesysGit/vigiles-openwrt
Vulnerability management tool that provides OpenWRT SBOM generation and CVE Analysis of target images.
Brets0150/DiamondHardLAMP
A script to build and manage a Diamond Hard secure Linux, Apache MariaDB, PHP(LAMP) Webhosting server. Builds and configure a LAMP stack with AppArmor, ModSecurity, ClamAV, LetsEncrypt, Fail2Ban, OSSEC, and UnattendedUpgrades.
dhruva-code/network-pentesting-checklist
Network pentesting checklist, and tools. Open for all security researchers and professional to modify the checklist.
LazyAlpaka/ifrit
Incident Forensic Response In Terminal script for linux
franckferman/LastLog-Audit
A Python tool to analyze and export login activity from /var/log/lastlog for security.
samuelerickson977/initharden
A hardening script for Ubuntu 22.04 x86-64