Defensive Linux Security Tools

13.02.24

Miscellaneous

The article below is under editing.

This is a list of some of the Defensive Linux Security Tools. Some make cost som money, but most of them are free.

 

Firewalls

iptables - https://iptables.org/

firewald - https://firewalld.org/

ufw

Guarddog

Vuurmuur

Gufw

Shorewall

Security Audit

openSCAP

openVAS

Nmap

Nikito

Lynsis

SpiderFoot

Rootkit/Malware

Detection

Wazuh

chkrootkit

rkhunter

Tiger

LMD

Access Control

SELinux

APPArmor

Smack

Grsecurity

Yama

Sandboxing

Bubblewrap

Firejail

Flatpak

Snappy

Chroot Jail

IDS / IPS

Snort

Suricata

Zeek

OSSEC

AIDE

Security Onion

OSSIM

CrowdSec

File Integrity Monitoring

Tripwire

Audtd

Samhain

OSSEC

Atomic OSSEC

Antivirus

Crowdstrike

ClamAV

Rspamd

Log Monitoring

Logwatch

ELK Stack

Graylog

Sagen

Fluentd

OpenObserve

Dynatrace

Disk/Filesystem encryption

dm-crypt

fscrypt

EncFS

Veracrypt

Gocrypt

eCrypfs

SecureFS

Secure Shell

SSHGuard

DenyHosts

Knockd

Fail2ban

Password security

John the Ripper

Hashcat

KeePassXC

pwgen

GoPass

VPN

strongSwan

OpenVPN

WireGuard

Libreswan

SoftEther

Patch Manager

Spacewalk

Katello

RH Satellite

Landscape

NinjaOne

WAFs

ModSecurity

NAXSI

BunkerWab

Coraza

open-appsec

Container Security

Docker Bench

Calito

Clair

gVisor

Grafeas

Falco

Dagda

Cilium

Dockle

Back