# the-z-labs/linux-exploit-suggester

**Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/the-z-labs-linux-exploit-suggester).**

6,532 stars · 1,163 forks · Shell · GPL-3.0

## Links

- GitHub: https://github.com/The-Z-Labs/linux-exploit-suggester
- awesome-repositories: https://awesome-repositories.com/repository/the-z-labs-linux-exploit-suggester.md

## Topics

`applicable-exploits` `exploits` `hacking-tool` `kernel-exploitation` `kernel-exploits` `linux-exploits` `linux-kernel` `lpe` `privilege-escalation-exploits` `published-exploits` `security-tools`

## Description

This project is a security auditing tool and vulnerability scanner designed to evaluate the security posture of Linux hosts. It functions as a privilege escalation auditor that scans running kernels for missing security patches and vulnerabilities to identify potential paths for gaining root access.

The utility performs kernel security analysis by matching system version strings against a database of known exploits. It audits kernel hardening settings and evaluates system exposure to categorize the probability of successful privilege escalation attacks.

The tool covers a broad range of assessment methodologies, including local security auditing, configuration file parsing, and runtime environment inspection. It automates the discovery of exploit paths by mapping discovered system attributes to publicly available exploit modules.

## Tags

### Security & Cryptography

- [Linux Enumeration](https://awesome-repositories.com/f/security-cryptography/privilege-escalation-tools/linux-enumeration.md) — Scans running Linux systems to identify vulnerabilities and enumeration vectors that allow users to gain root access.
- [Kernel Security Analysis](https://awesome-repositories.com/f/security-cryptography/kernel-security-analysis.md) — Checks kernel versions and configurations against known exploits to determine if the system is susceptible to attacks.
- [Kernel Version Matching](https://awesome-repositories.com/f/security-cryptography/kernel-version-matching.md) — Matches system version strings against a database of known vulnerable kernels to identify applicable exploits.
- [Linux Kernel Vulnerability Scanners](https://awesome-repositories.com/f/security-cryptography/linux-kernel-vulnerability-scanners.md) — Provides a security scanner that checks running Linux kernel versions against known exploits and hardening settings.
- [Local Security Auditing](https://awesome-repositories.com/f/security-cryptography/local-security-auditing.md) — Evaluates the security posture of a local machine to find misconfigurations and outdated software that risk compromise.
- [Privilege Escalation Path Analysis](https://awesome-repositories.com/f/security-cryptography/privilege-escalation-path-analysis.md) — Analyzes Linux systems for missing security patches and kernel vulnerabilities to identify potential privilege escalation paths.
- [Security Auditing Tools](https://awesome-repositories.com/f/security-cryptography/security-auditing-tools.md) — Evaluates kernel configurations and system exposure to determine the overall security posture of a Linux host.
- [Categorical Vulnerability Mappings](https://awesome-repositories.com/f/security-cryptography/compliance-standards/vulnerability-mapping/categorical-vulnerability-mappings.md) — Maps discovered system attributes to a pre-defined list of publicly available exploit modules.
- [Kernel Security Auditors](https://awesome-repositories.com/f/security-cryptography/kernel-security-auditors.md) — Verifies kernel compile-time configurations and runtime settings to determine overall security posture. ([source](https://github.com/the-z-labs/linux-exploit-suggester#readme))
- [System Configuration Auditing](https://awesome-repositories.com/f/security-cryptography/system-configuration-auditing.md) — Parses system files and kernel parameters to detect insecure settings that facilitate privilege escalation.

### Part of an Awesome List

- [Penetration Testing](https://awesome-repositories.com/f/awesome-lists/security/penetration-testing.md) — Automates the discovery of potential exploit paths during a security assessment of a Linux environment.
- [Privilege Escalation Tools](https://awesome-repositories.com/f/awesome-lists/security/privilege-escalation-tools.md) — Identifies system exposure to known exploits and categorizes the success probability of privilege escalation attacks. ([source](https://github.com/the-z-labs/linux-exploit-suggester#readme))

### Software Engineering & Architecture

- [Asset Risk Scoring](https://awesome-repositories.com/f/software-engineering-architecture/automated-risk-assessment-engines/asset-risk-scoring.md) — Assigns risk levels to potential exploits based on the intersection of kernel versions and system configurations.

### System Administration & Monitoring

- [Runtime Environment Inspection](https://awesome-repositories.com/f/system-administration-monitoring/runtime-environment-inspection.md) — Queries the live operating system to extract kernel build dates and distribution-specific security patches.