3 Repos
Matching system version strings against databases of known vulnerable kernels.
Distinct from Commit-Based Version Matching: Distinct from commit-based matching or general pattern matching by targeting operating system kernel version strings specifically.
Explore 3 awesome GitHub repositories matching security & cryptography · Kernel Version Matching. Refine with filters or upvote what's useful.
This project is a security auditing tool and vulnerability scanner designed to evaluate the security posture of Linux hosts. It functions as a privilege escalation auditor that scans running kernels for missing security patches and vulnerabilities to identify potential paths for gaining root access. The utility performs kernel security analysis by matching system version strings against a database of known exploits. It audits kernel hardening settings and evaluates system exposure to categorize the probability of successful privilege escalation attacks. The tool covers a broad range of asses
Matches system version strings against a database of known vulnerable kernels to identify applicable exploits.
linux-exploit-suggester is a diagnostic utility and vulnerability scanner designed to identify potential kernel exploits on Linux systems. It functions as a privilege escalation auditor by matching system information and kernel versions against a database of known security flaws. The tool differentiates itself by filtering and ranking exploits based on specific system properties and runtime security configurations. It evaluates kernel hardening settings, such as memory protection mechanisms, to discard inapplicable exploits and prioritize candidates by their probability of success. The softw
Matches system version strings against databases of known vulnerable kernels to identify exploit candidates.
Vulscan is a network service auditor and vulnerability scanner that utilizes the Nmap Scripting Engine to identify security flaws. It functions as a version-based flaw detector, matching detected software banners against an offline vulnerability database to identify potential security risks without requiring a constant internet connection. The tool provides mechanisms for refining identification accuracy, including an interactive mode for manual version overriding and configurable matching logic to filter results. It manages security data through a system for loading local datasets and synchr
Identifies security risks by matching detected service versions against local datasets without requiring an internet connection.