Virtualization Based Hardening (VBH) - Intel / Bitdefender
|
|
3
|
790
|
June 15, 2020
|
Stackable Wrappers
|
|
11
|
892
|
May 30, 2020
|
disable newly (all) installed services by default
|
|
0
|
725
|
April 19, 2020
|
Selecting Secure Packages from packages.debian.org
|
|
23
|
1187
|
April 6, 2020
|
Printer yellow dots anonymization
|
|
1
|
595
|
March 9, 2020
|
run OpenSCAP security test
|
|
1
|
707
|
March 7, 2020
|
DISA STIG (Security Technical Implementation Guides) Audit Tool for Debian
|
|
6
|
1067
|
February 26, 2020
|
Do NTP and TCP timestamps really leak your local time?
|
|
10
|
1389
|
February 24, 2020
|
use kernel command line as a source of randomness
|
|
14
|
1119
|
February 22, 2020
|
/proc/pid/sched spy on keystrokes - proof of concept spy-gksu
|
|
0
|
992
|
September 27, 2019
|
early-rng-init-tools for better entropy?
|
|
3
|
898
|
February 16, 2020
|
kernel.deny_new_usb sysctl to deny new USB devices
|
|
9
|
861
|
February 15, 2020
|
Moar Entropy Sources
|
|
16
|
1131
|
February 3, 2020
|
Untrusted Root - improve Security by Restricting Root
|
|
29
|
2579
|
December 22, 2019
|
Hide Kernel Symbols for Better Security vs Reproducible Builds
|
|
12
|
942
|
December 21, 2019
|
pam_namspace / namespace.conf to give user own private /tmp
|
|
3
|
659
|
December 7, 2019
|
kernel patch CONFIG_TIOCSTI_DISABLE to further restrict root CAP_SYS_ADMIN
|
|
6
|
744
|
December 5, 2019
|
harbian-audit - Hardened Debian GNU/Linux distro auditing
|
|
2
|
806
|
November 19, 2019
|
make symlink attacks and other /tmp based attacks harder or impossible using libpam-tmpdir
|
|
3
|
1078
|
June 30, 2019
|
walled garden, firewall whitelisting, application whitelisting, sudo lockdown, superuser mode, protected mode
|
|
15
|
2504
|
September 13, 2019
|
msgcollector security hardening
|
|
9
|
1135
|
September 9, 2019
|
use codecrypt to sign Whonix releases
|
|
1
|
2181
|
July 29, 2019
|
lynis - security auditing tool for Unix based systems
|
|
3
|
1078
|
November 15, 2019
|