linux:security

This is an old revision of the document!

Linux Security

Zerotrust Browser

https://github.com/m1k1o/neko https://docs.linuxserver.io/images/docker-kasm/#usage

Headline

https://zeek.org/

Example Metasploit Framework

https://habr.com/ru/companies/npoechelon/articles/347702/ - Metasploit Framework

FIPS security for ubuntu

  1. Auditing an Ubuntu System for DISA-STIG compliance - link Detail

Openscap

# https://medium.com/defense-unicorns/stig-scanning-with-openscap-675c7292d7cb
# Install OpenSCAP
sudo apt install libopenscap8
 
# Confirm installation and location of OpenSCAP
which oscap
 
# Confirm OpenSCAP version
oscap -V
 
# Install SCAP security guide targeting Debian-based OS
sudo apt install ssg-debderived
 
 
sudo oscap xccdf eval --profile xccdf_org.ssgproject.content_profile_cis_level1_server --results-arf arf.xml --report ./rep /usr/share/ubuntu-scap-security-guides/1/benchmarks/ssg-ubuntu2204-ds.xml > oscap_result_$(date +"%y%m%d").txt
 
# Download the latest Scap Security Guide
sudo wget https://github.com/ComplianceAsCode/content/releases/download/v0.1.69/scap-security-guide-0.1.69.zip
# Unzip Scap Security Guide
sudo unzip scap-security-guide-0.1.69.zip
cd scap-secuirty-guide-0.1.69/
ls
 
# Display a list of available Profiles
oscap info ssg-ubuntu2004-ds-1.2.xml
 
# Evaluate a STIG Profile and write XCCDF results into a report.html file
sudo oscap xccdf eval --profile xccdf_org.ssgproject.content_profile_stig \
--report report.html ssg-ubuntu2004-ds-1.2.xml
  • linux/security.1720834396.txt.gz
  • Last modified: 2024/07/13 01:33
  • by admin