Linux Security
Showing 31 of 31 projects
A comprehensive, evolving guide to hardening a Linux server with practical steps and security best practices.
A cloud native runtime security tool for Linux that detects abnormal behavior and security threats in real-time.
A lightweight SUID sandbox for Linux that uses namespaces, seccomp-bpf, and capabilities to restrict application access.
A university course repository teaching vulnerability research, reverse engineering, and binary exploitation through hands-on labs.
An Ansible collection providing battle-tested security hardening for Linux, SSH, nginx, and MySQL.
eBPF-based real-time security observability and runtime enforcement for Kubernetes and Linux systems.
A production-ready auditd configuration for Linux security monitoring that works out-of-the-box across major distributions.
Upstream repository for the Security Enhanced Linux (SELinux) userland libraries and tools, complementing the kernel's mandatory access control features.
A comprehensive tutorial series on modern Linux binary exploitation techniques, from stack overflows to heap vulnerabilities.
A custom AppArmor profile generator for Docker containers that simplifies security configuration.
A custom AppArmor profile generator for Docker containers that simplifies container security.
A pluggable framework for automated decryption of data and unlocking of LUKS volumes using pins like Tang, TPM2, and PKCS#11.
A command-line forensics tool for tracking USB device connection history on GNU/Linux systems.
A portable volatile memory acquisition tool for Linux that captures memory images without requiring target OS or kernel knowledge.
An open-source blue team tool that protects Linux and Windows systems via honeypots, monitoring, and alerting.
A modular Linux persistence framework for security research, detection engineering, and penetration testing.
An automated malware analysis tool for Linux ELF files, extracting static and dynamic features for security assessment.
A Linux daemon that detects and blocks USB keystroke injection attacks through monitoring and device ejection.
A NixOS module for convenient system hardening by securely configuring existing software and reducing attack surface.
A Python script that configures iptables and Tor to route all network traffic and DNS through the Tor network for anonymity.
A script to quickly harden UNIX/Linux system permissions and ownership for security compliance and standardization.
A Python sandbox that automatically collects, analyzes, and reports runtime indicators of Linux malware through static, dynamic, and memory analysis.
An OCI hook that traces container syscalls using eBPF to generate tailored seccomp security profiles.
An open-source blue team tool that protects Linux and Windows operating systems through multiple security methods.
A collection of independent Python scripts for monitoring Linux system security and investigating potential compromises.
A simple Linux ELF runtime crypter that encrypts and loads executables directly into memory to evade detection.
A multiplatform Linux sandbox for malware traffic analysis and IOC capture using QEMU emulation.
A curated collection of information and tools for detecting, analyzing, and hunting malware persistence mechanisms across operating systems.
A live forensics tool for Linux that collects system artifacts and logs them to CSV files for compromise detection.
An autonomous open-source security agent for Linux that detects, scores, and automatically responds to threats using eBPF, AI, and collaborative defense.
A tool to sandbox AppImages using bwrap with Android/Flatpak-style permission profiles.
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.