Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

awesome-fedora-security

Awesome Fedora Security: A curated collection of projects, featuring hardening scripts, configurations, spins, labs, and environments designed to secure and fortify the Fedora distribution.
https://github.com/34N0/awesome-fedora-security

Last synced: about 10 hours ago
JSON representation

  • Images

    • Secureblue (Hardened Ublue Images) - This repo takes the uBlue starting point and selectively applies minimal hardening so as to provide images that are partially hardened without sacrificing usability for most use cases.
    • Fedora Security Lab - The Fedora Security Lab (FSL) provides a safe test environment to work on security auditing, forensics, system rescue and teaching security testing methodologies in universities and other organizations.

  • System Components

    • Sandboxing

      • Bubblewrap - Low-level unprivileged sandboxing tool used by Flatpak and similar projects
      • Bubblewrap SUID - This repository contains the .spec file for bundling a setuid variant of Bubblewrap as an RPM. This allows using flatpaks on immutable OSTree distributions with unprivileged_user_namespaces set to 0.
      • Bubblejail - Bubblejail is a bubblewrap-based alternative to Firejail.
      • 🡽 crablock - Crablock is written entirely in (un)safe Rust (it links against libc and libseccomp). And features bleeding edge Linux security features like Landlock or MDWE_REFUSE_EXEC_GAIN.

    • Hardened Malloc

    • Kernel Hardened

      • Kernel Hardened - This repository tracks the hardened Linux kernel from the Arch Linux repositories and packages ist for Fedora Linux.

    • SELinux

      • SELinux Policy - selinux-policy for Fedora is a large patch off the mainline

  • Automation

    • SELinux

      • Fedora Hardened Script - This is a script that hardens the default fedora installation significantly.
      • Ansible Role RHEL9 CIS - Automate CIS benchmark compliance with Ansible
      • SolidCore Scripts - This project aims to protect immutable Fedora variants against a variety of attack vectors with a collection of scripts.

  • Audit

    • SELinux

      • RHEL9 CIS Audit - Ability to audit a system using a lightweight binary to check the current state.
Programming Languages
Shell 4 Python 3 YAML 3 C 1 JavaScript 1
Categories
System Components 8 Automation 3 Images 2 Audit 1
Sub Categories
SELinux 5 Sandboxing 4 Hardened Malloc 2 Kernel Hardened 1
Keywords
security 3 fedora 2 fedora-kinoite 2 fedora-silverblue 2 benchmark 2 benchmark-framework 2 cis-benchmark 2 compliance-as-code 2 compliance-automation 2 redhat9 2 rhel9 2 security-tools 2 security-auditing-tool 1 fedora-security-lab 1 lab 1 osstmm 1 pentesting 1 security-audit 1 spin 1 linux-containers 1 user-namespaces 1 bubblewrap 1 bubblewrap-suid 1 copr 1 redhat 1 cis-standards 1 ostree 1 rpm 1 ansible 1 ansible-playbook 1 ansible-role 1 auditing 1 hardening-settings 1 cis 1 hardening 1 hardened-fedora 1 security-automation 1 rhel 1