https://github.com/innovativeinventor/securechecks
Security tools to lock down and prevent pwnage. Intended for personal use.
https://github.com/innovativeinventor/securechecks
Last synced: 18 days ago
JSON representation
Security tools to lock down and prevent pwnage. Intended for personal use.
- Host: GitHub
- URL: https://github.com/innovativeinventor/securechecks
- Owner: InnovativeInventor
- License: mit
- Created: 2020-01-09T02:21:50.000Z (over 6 years ago)
- Default Branch: master
- Last Pushed: 2020-01-09T02:22:44.000Z (over 6 years ago)
- Last Synced: 2025-01-09T07:20:52.225Z (over 1 year ago)
- Language: Shell
- Homepage:
- Size: 1.95 KB
- Stars: 0
- Watchers: 3
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
## securechecks
This repo contains scripts to ensure that a server/computer is properly locked-down.
Scripts that have been fully audited (i.e. completely trusted by me)
- `cloudflare.sh` uses [UFW](launchpad.net/ufw) and only allows [Cloudflare's IPs](www.cloudflare.com/ips/)
- `nginx.sh` checks the nginx conf(s) for common vulns using [gixy](https://github.com/yandex/gixy)
- `clamav.sh` scans for malware using [clamav](https://www.clamav.net/documents/scanning#daemon)
Scripts that should not run on sensitive machines (I haven't audited these for trojan horses):
- `lynis.sh`
In no way should the checks contained in this repo be considered comprehensive or a substitute for good opsec. Use at your own risk.