Skip to content

AmbrSb/FreeBSD-SecConfAudit

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
CMakeLists.txt
CMakeLists.txt
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
common.sh
common.sh
 
 
kernel-audit.sh
kernel-audit.sh
 
 
proc-audit.sh
proc-audit.sh
 
 
proc_info.c
proc_info.c
 
 

Repository files navigation

FreeBSD-SecConfAudit

This project provides a set of scripts/programs that run various security/sanity checks on a running FreeBSD machine and report the results. This is still a work in progress and I am adding new checks and improving existing ones. These audit checks are based on disecting binary files, system calls, sysctl probes, etc.

Types of Audit Checks

  • Global system configuration checks
  • Process checks
  • Executable checks
  • Library checks

Screenshots

  • Global system config checks image

  • Process checks These info are extracted either from the ELF file, or directly from the kernel through kinfo_getproc() system call. image

Prequisits

  • pax-utils > 1.2.2
  • lscpu > 1.2.0
  • cmake >= 3.5

About

Verify status of common security features in a running FreeBSD machine.

Topics

freebsd security auditing kernel configuration automated userspace

Resources

Readme

License

BSD-3-Clause license
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages