4 Repos
Tools that analyze kernel images and configurations for security vulnerabilities and mitigations.
Distinct from Linux Security Utilities: None of the candidates describe a tool for auditing the security of kernel images specifically.
Explore 4 awesome GitHub repositories matching security & cryptography · Kernel Security Auditors. Refine with filters or upvote what's useful.
This project is a security auditing tool and vulnerability scanner designed to evaluate the security posture of Linux hosts. It functions as a privilege escalation auditor that scans running kernels for missing security patches and vulnerabilities to identify potential paths for gaining root access. The utility performs kernel security analysis by matching system version strings against a database of known exploits. It audits kernel hardening settings and evaluates system exposure to categorize the probability of successful privilege escalation attacks. The tool covers a broad range of asses
Verifies kernel compile-time configurations and runtime settings to determine overall security posture.
linux-exploit-suggester is a diagnostic utility and vulnerability scanner designed to identify potential kernel exploits on Linux systems. It functions as a privilege escalation auditor by matching system information and kernel versions against a database of known security flaws. The tool differentiates itself by filtering and ranking exploits based on specific system properties and runtime security configurations. It evaluates kernel hardening settings, such as memory protection mechanisms, to discard inapplicable exploits and prioritize candidates by their probability of success. The softw
Verifies compile-time configurations and runtime settings to assess the security posture of the running kernel.
This project is a diagnostic toolset used to scan CPU hardware and Linux kernel images to assess susceptibility to Spectre, Meltdown, and other transient execution vulnerabilities. It functions as a vulnerability scanner and security auditor designed to identify side-channel attack risks and verify the status of hardware-level security patches. The tool provides capabilities for both active system assessment and standalone kernel image security analysis. It evaluates the presence of security mitigations by analyzing CPU hardware and kernel configurations without requiring a running kernel or
Evaluates Linux kernel images and configurations for the presence of vulnerability mitigations.
The Linux Test Project (LTP) is a comprehensive test suite and framework for validating the reliability, robustness, and stability of the Linux kernel. It provides a structured environment for writing, building, and executing kernel tests, covering system call validation, network protocol testing, KVM virtualization testing, and kernel security regression testing through CVE reproduction. The project includes a kernel-test harness framework with dedicated C and shell APIs for writing self-contained test cases, along with an Autotools-based build system that handles cross-compilation and kerne
Reproduces known CVEs to verify kernel security patches and identify regressions in the Linux kernel.