itpol
lynis
itpol | lynis | |
---|---|---|
14 | 72 | |
4,892 | 12,533 | |
0.1% | 1.2% | |
0.0 | 7.8 | |
3 months ago | 5 days ago | |
Shell | ||
GNU General Public License v3.0 or later | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
itpol
-
Why desktop Linux is finally growing in popularity
Not long before malware becomes more prevalent on Linux now that more people are using it. But Linux is not some magic bullet that stops all malware, you have to practice good opsec and harden your environment too. How to do this is outside the scope of my comment. If you are concerned though there are these resources:
https://github.com/lfit/itpol/blob/master/linux-workstation-...
https://madaidans-insecurities.github.io/linux.html
- Finally a stable linux distro! Fedora 38 works great on 2021 M16!
- sudo vs doas - Which one is better security-wise?
-
Do you perform additional security hardening to Fedora after installation?
Between the Arch wiki on Security and this link alone, there's enough inspiration to harden some stuff.
-
I’m aware that the template is kinda bad
Linux hardening checklist Workstation security checklist
-
What can I do to stay safe on my computer considering the current world events?
for workstation hardening, check out -- https://github.com/lfit/itpol/blob/master/linux-workstation-security.md
-
[Arch Linux] Since Arch is modular, applications like firewall and sandbox or antivirus need to be installed and configured manually. But is it really recommended to have those installed and configured as precautions?
now, if you want a hardened workstation you should check out this -- https://github.com/lfit/itpol/blob/master/linux-workstation-security.md -- mind you, some of the data on here, like browsers and extensions/etc are out-dated but the general premise is pretty solid.
- Linux noob, just got on Fedora - security related query.
- Useful IT Policies
-
What *general purpose* desktop Linux distros have the best overall security?
The Linux workstation security checklist would be a better recommendation. While also not targeted at home users, it gives at least some priority levels.
lynis
-
Who does check linux distros of malware - open source
Linux has (free) tools to improve security and detect/remove malware: Lynis,Chkrootkit,Rkhunter,ClamAV,Vuls,LMD,radare2,Yara,ntopng,maltrail,Snort,Suricata...
- Learn security best practices
- How do i find and remove the compilers installed in fedora?
-
Fight against scans, bots and script-kiddies
What I would do in your place is run this https://github.com/CISOfy/lynis and follow some of the instructions.
-
What are your favorite sites that are privacy related that you bookmarked?
https://github.com/CISOfy/Lynis (Linux hardening)
- Server security/hardening baselines for Linux Template
- Ultimate privacy when setting up Fedora?
- Linux security tests?
- Vulnerability scanning tools for homelab?
-
Cyber Security for developers: what and where to learn?
Linux security audit scanner
What are some alternatives?
Fedora-40-Post-Install-Guide - Things to do after installing Fedora 40
Wazuh - Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
madaidans-insecurities.github.io
OSSEC - OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
usbguard - USBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are authorized) as well as method of use policies (how a USB device may interact with the system)
PEASS-ng - PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
opensnitch - OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.
cve-check-tool - Original Automated CVE Checking Tool
rpm-hardened_malloc
OSQuery - SQL powered operating system instrumentation, monitoring, and analytics.
debian-cis - PCI-DSS compliant Debian 10/11/12 hardening