priv-kweihmann / meta-dca Goto Github PK
View Code? Open in Web Editor NEWLayer for dynamic code analysis, profiling and security hardening
License: Other
Layer for dynamic code analysis, profiling and security hardening
License: Other
Use https://github.com/iovisor/bpftrace/blob/master/tools/opensnoop.bt to detect the necessary r/o and r/w paths of a system unit and warning on mismatches
Try using https://dynamorio.org/drmemory_docs/index.html to detect memleaks
https://github.com/almandin/fuxploider sounds like a good idea to have for testing webservers
...to filter out services that don't need to be monitored
Use https://github.com/iovisor/bcc/blob/master/tools/filelife.py to catch short-lived files, which are NOT written to a ramdisk based mount path
https://github.com/aquasecurity/tracee
Tracee is a Runtime Security and forensics tool for Linux. It is using Linux eBPF technology to trace your system and applications at runtime, and analyze collected events to detect suspicious behavioral patterns. It is delivered as a Docker image that monitors the OS and detects suspicious behavior based on a pre-defined set of behavioral patterns
Is your feature request related to a problem? Please describe.
Provide powerful tools for seccomp analysis
Describe a tool that might help here
https://github.com/david942j/seccomp-tools
https://github.com/D35m0nd142/LFISuite looks like something for do some valuable security scanning
Enable usage of https://github.com/iovisor/bcc/blob/master/tools/memleak.py
Use https://github.com/iovisor/bpftrace/blob/master/tools/setuids.bt to monitor any setuid calls of a system unit (in theory a unit shall not do any)
for instance due to missing permissions or simply because they are not present in the system.
Each cause should get its own error ID.
Use https://github.com/iovisor/bcc/blob/master/tools/deadlock.py to detect (optential) deadlocks on a systemd unit
Use openvas to check an image (https://github.com/greenbone/openvas-scanner)
preserve the originally used kernel configuration, if no module is active
Using https://github.com/shenril/Sitadel to scan the target for vulnerabilities
Is your feature request related to a problem? Please describe.
Vailyn is a multi-phased vulnerability analysis and exploitation tool for path traversal/directory climbing vulnerabilities - and as path traversal bugs shouldn't happen anymore in 2020, give this tool a try (maybe using the cross-qemu-image tooling)
Describe a tool that might help here
https://github.com/VainlyStrain/Vailyn
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.