Skip to content

AnaSteopoae/Detectia-riscurilor-in-Linux

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
README.md
README.md
 
 
output_backups.txt
output_backups.txt
 
 
output_dmesg_errors.txt
output_dmesg_errors.txt
 
 
output_dns_config.txt
output_dns_config.txt
 
 
output_executables_permissions.txt
output_executables_permissions.txt
 
 
output_firewall.txt
output_firewall.txt
 
 
output_kernel_checksum.txt
output_kernel_checksum.txt
 
 
output_loaded_modules.txt
output_loaded_modules.txt
 
 
output_modinfo_ac97_bus.txt
output_modinfo_ac97_bus.txt
 
 
output_modinfo_aesni_intel.txt
output_modinfo_aesni_intel.txt
 
 
output_modinfo_ahci.txt
output_modinfo_ahci.txt
 
 
output_modinfo_autofs4.txt
output_modinfo_autofs4.txt
 
 
output_modinfo_binfmt_misc.txt
output_modinfo_binfmt_misc.txt
 
 
output_modinfo_blake2b_generic.txt
output_modinfo_blake2b_generic.txt
 
 
output_modinfo_btrfs.txt
output_modinfo_btrfs.txt
 
 
output_modinfo_cec.txt
output_modinfo_cec.txt
 
 
output_modinfo_crc32_pclmul.txt
output_modinfo_crc32_pclmul.txt
 
 
output_modinfo_crct10dif_pclmul.txt
output_modinfo_crct10dif_pclmul.txt
 
 
output_modinfo_cryptd.txt
output_modinfo_cryptd.txt
 
 
output_modinfo_crypto_simd.txt
output_modinfo_crypto_simd.txt
 
 
output_modinfo_dm_log.txt
output_modinfo_dm_log.txt
 
 
output_modinfo_dm_mirror.txt
output_modinfo_dm_mirror.txt
 
 
output_modinfo_dm_region_hash.txt
output_modinfo_dm_region_hash.txt
 
 
output_modinfo_drm.txt
output_modinfo_drm.txt
 
 
output_modinfo_drm_kms_helper.txt
output_modinfo_drm_kms_helper.txt
 
 
output_modinfo_e1000.txt
output_modinfo_e1000.txt
 
 
output_modinfo_efi_pstore.txt
output_modinfo_efi_pstore.txt
 
 
output_modinfo_fb_sys_fops.txt
output_modinfo_fb_sys_fops.txt
 
 
output_modinfo_ghash_clmulni_intel.txt
output_modinfo_ghash_clmulni_intel.txt
 
 
output_modinfo_hid.txt
output_modinfo_hid.txt
 
 
output_modinfo_hid_generic.txt
output_modinfo_hid_generic.txt
 
 
output_modinfo_i2c_piix4.txt
output_modinfo_i2c_piix4.txt
 
 
output_modinfo_icp.txt
output_modinfo_icp.txt
 
 
output_modinfo_inet_diag.txt
output_modinfo_inet_diag.txt
 
 
output_modinfo_input_leds.txt
output_modinfo_input_leds.txt
 
 
output_modinfo_intel_rapl_common.txt
output_modinfo_intel_rapl_common.txt
 
 
output_modinfo_intel_rapl_msr.txt
output_modinfo_intel_rapl_msr.txt
 
 
output_modinfo_ip_tables.txt
output_modinfo_ip_tables.txt
 
 
output_modinfo_ipt_REJECT.txt
output_modinfo_ipt_REJECT.txt
 
 
output_modinfo_isofs.txt
output_modinfo_isofs.txt
 
 
output_modinfo_joydev.txt
output_modinfo_joydev.txt
 
 
output_modinfo_libahci.txt
output_modinfo_libahci.txt
 
 
output_modinfo_libcrc32c.txt
output_modinfo_libcrc32c.txt
 
 
output_modinfo_lp.txt
output_modinfo_lp.txt
 
 
output_modinfo_mac_hid.txt
output_modinfo_mac_hid.txt
 
 
output_modinfo_msr.txt
output_modinfo_msr.txt
 
 
output_modinfo_nf_conncount.txt
output_modinfo_nf_conncount.txt
 
 
output_modinfo_nf_conntrack.txt
output_modinfo_nf_conntrack.txt
 
 
output_modinfo_nf_defrag_ipv4.txt
output_modinfo_nf_defrag_ipv4.txt
 
 
output_modinfo_nf_defrag_ipv6.txt
output_modinfo_nf_defrag_ipv6.txt
 
 
output_modinfo_nf_nat.txt
output_modinfo_nf_nat.txt
 
 
output_modinfo_nf_reject_ipv4.txt
output_modinfo_nf_reject_ipv4.txt
 
 
output_modinfo_nf_tables.txt
output_modinfo_nf_tables.txt
 
 
output_modinfo_nfnetlink.txt
output_modinfo_nfnetlink.txt
 
 
output_modinfo_nft_compat.txt
output_modinfo_nft_compat.txt
 
 
output_modinfo_nft_counter.txt
output_modinfo_nft_counter.txt
 
 
output_modinfo_nls_iso8859_1.txt
output_modinfo_nls_iso8859_1.txt
 
 
output_modinfo_nsh.txt
output_modinfo_nsh.txt
 
 
output_modinfo_openvswitch.txt
output_modinfo_openvswitch.txt
 
 
output_modinfo_parport.txt
output_modinfo_parport.txt
 
 
output_modinfo_parport_pc.txt
output_modinfo_parport_pc.txt
 
 
output_modinfo_pata_acpi.txt
output_modinfo_pata_acpi.txt
 
 
output_modinfo_ppdev.txt
output_modinfo_ppdev.txt
 
 
output_modinfo_psmouse.txt
output_modinfo_psmouse.txt
 
 
output_modinfo_raid6_pq.txt
output_modinfo_raid6_pq.txt
 
 
output_modinfo_rapl.txt
output_modinfo_rapl.txt
 
 
output_modinfo_rc_core.txt
output_modinfo_rc_core.txt
 
 
output_modinfo_sch_fq_codel.txt
output_modinfo_sch_fq_codel.txt
 
 
output_modinfo_serio_raw.txt
output_modinfo_serio_raw.txt
 
 
output_modinfo_sha1_ssse3.txt
output_modinfo_sha1_ssse3.txt
 
 
output_modinfo_sha256_ssse3.txt
output_modinfo_sha256_ssse3.txt
 
 
output_modinfo_snd.txt
output_modinfo_snd.txt
 
 
output_modinfo_snd_ac97_codec.txt
output_modinfo_snd_ac97_codec.txt
 
 
output_modinfo_snd_intel8x0.txt
output_modinfo_snd_intel8x0.txt
 
 
output_modinfo_snd_pcm.txt
output_modinfo_snd_pcm.txt
 
 
output_modinfo_snd_rawmidi.txt
output_modinfo_snd_rawmidi.txt
 
 
output_modinfo_snd_seq.txt
output_modinfo_snd_seq.txt
 
 
output_modinfo_snd_seq_device.txt
output_modinfo_snd_seq_device.txt
 
 
output_modinfo_snd_seq_midi.txt
output_modinfo_snd_seq_midi.txt
 
 
output_modinfo_snd_seq_midi_event.txt
output_modinfo_snd_seq_midi_event.txt
 
 
output_modinfo_snd_timer.txt
output_modinfo_snd_timer.txt
 
 
output_modinfo_soundcore.txt
output_modinfo_soundcore.txt
 
 
output_modinfo_spl.txt
output_modinfo_spl.txt
 
 
output_modinfo_syscopyarea.txt
output_modinfo_syscopyarea.txt
 
 
output_modinfo_sysfillrect.txt
output_modinfo_sysfillrect.txt
 
 
output_modinfo_sysimgblt.txt
output_modinfo_sysimgblt.txt
 
 
output_modinfo_tcp_diag.txt
output_modinfo_tcp_diag.txt
 
 
output_modinfo_ttm.txt
output_modinfo_ttm.txt
 
 
output_modinfo_udp_diag.txt
output_modinfo_udp_diag.txt
 
 
output_modinfo_usbhid.txt
output_modinfo_usbhid.txt
 
 
output_modinfo_vboxguest.txt
output_modinfo_vboxguest.txt
 
 
output_modinfo_video.txt
output_modinfo_video.txt
 
 
output_modinfo_vmwgfx.txt
output_modinfo_vmwgfx.txt
 
 
output_modinfo_x_tables.txt
output_modinfo_x_tables.txt
 
 
output_modinfo_xor.txt
output_modinfo_xor.txt
 
 
output_modinfo_xt_tcpudp.txt
output_modinfo_xt_tcpudp.txt
 
 
output_modinfo_zavl.txt
output_modinfo_zavl.txt
 
 
output_modinfo_zcommon.txt
output_modinfo_zcommon.txt
 
 
output_modinfo_zfs.txt
output_modinfo_zfs.txt
 
 
output_modinfo_zlua.txt
output_modinfo_zlua.txt
 
 

Repository files navigation

🔐 Linux Security Audit Script

This Bash script performs a comprehensive security audit of a Linux system. It checks executables, running processes, installed packages, file permissions, firewall status, network activity, kernel integrity, and more. It’s ideal for system administrators looking for a quick snapshot of a system’s security state.

📋 Features

The script includes the following security checks:

🔧 System & Process Auditing

  • Permissions of executables in /bin, /usr/bin, /sbin, and /usr/sbin
  • Top memory-consuming running processes
  • Running systemd services
  • User and group accounts on the system
  • SUID/SGID files

📦 Package Management

  • Installed packages and their versions (supports dpkg, rpm, and pacman)
  • Alerts for sensitive packages like rsync, samba-common, and python3-yaml

🔐 File & System Integrity

  • Checksums for critical binaries (/bin/ls, /bin/bash, etc.)
  • Permissions of sensitive files like /etc/passwd, /etc/shadow, /etc/sudoers
  • Kernel image checksum validation
  • dmesg logs for kernel warnings and errors
  • Loaded kernel modules and their metadata

🌐 Network & Firewall

  • Open ports and listening processes (via ss)
  • Active network connections
  • Port scanning (1–1024) using nc
  • Firewall rules from ufw and/or iptables
  • Protocol restriction via custom iptables rules

📡 DNS, Backups, and Temporary Files

  • DNS configuration (/etc/resolv.conf and resolvectl)
  • Available backups in /var/backups
  • Files in /tmp, with cleanup of old temporary files
  • Crontab entries related to backup tasks

🛠️ Usage

  1. Give execute permissions:

    chmod +x audit_script.sh

  2. Run the script with root privileges:

    sudo ./audit_script.sh

⚠️ Some checks require root access (e.g., firewall status, kernel file access, and /tmp cleanup).

🗂️ Output

The script will generate multiple .txt output files in the current directory, such as:

  • output_executables_permissions.txt
  • output_running_processes.txt
  • output_firewall.txt
  • output_kernel_checksum.txt
  • output_module_checksums.txt
  • output_scan_ports.txt
  • ...and more

These files contain detailed logs and results for each check performed.

📎 Notes

  • Make sure the system has common tools like ps, awk, dpkg, rpm, iptables, ufw, sha256sum, etc.
  • You can safely delete or archive the output .txt files after review.
  • Some modules or binaries might not be available depending on your Linux distribution.

About

Linux Security Audit Script is a Bash-based tool that performs a comprehensive security check on your Linux system. It audits processes, file permissions, installed packages, firewall status, network activity, and kernel integrity—producing detailed .txt reports for quick analysis.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages