Involved Projects and Packages
extrace traces all program executions occurring on a system and prints the process call hierarchy in a human-readable form.
While process tracing is exact, looking up all information is inherently sensitive to race conditions. In doubt, you can only trust the PID was written correctly.
Lynis is a security and system auditing tool. It scans a system on the most interesting parts useful for audits, like:
- Security enhancements
- Logging and auditing options
- Banner identification
- Software availability
Lynis is released as a GPL licensed project and free for everyone to use.
See http://www.rootkit.nl for a full description and documentation.
Control physical access to a linux computer by locking all of its virtual
terminals / consoles.
physlock is an alternative to vlock, it is equivalent to `vlock -an'. It is
written because vlock blocks some linux kernel mechanisms like hibernate and
suspend and can therefore only be used with some limitations. physlock is
designed to be more lightweight, it does not have a plugin interface and it is
not started using a shell script wrapper.
This is a command line tool to interact with the PIV applet on a YubiKey NEO. Among other functions it supports, generating keys on device, importing keys and certificates and creating certificate requests.
The YubiKey NEO supports the Privilege and Identification Card (PIV) interface specified in NIST SP 800-73 document "Cryptographic Algorithms and Key Sizes for PIV". This enables you to perform RSA or ECC sign/decrypt operations using a private key stored on the smartcard, through common interfaces like PKCS#11.
This projects provides new and updated packages for cryptography and privacy and their dependencies for maintained distribution versions of openSUSE and SLE.
GNU Stow is a program for managing the installation of software
packages, keeping them separate (/usr/local/stow/emacs vs.
/usr/local/stow/perl, for example) while making them appear to be
installed in the same place (/usr/local). Software to ease the keeping
track of software built from source, making it easy to install, delete,
move etc.
The Docker Bench for Security is a script that checks for dozens of common
best-practices around deploying Docker containers in production.
The tests are all automated, and are inspired by the CIS Docker 1.11.0 Benchmark.
( https://benchmarks.cisecurity.org/tools2/docker/CIS_Docker_1.11.0_Benchmark_v1.0.0.pdf )