This layer provides security tools, hardening tools for Linux kernels and libraries for implementing security mechanisms.

Mailing list

Git repository

git:// web repo

Last commit: 5 years, 11 months ago (morty branch)



The meta-security layer depends upon:

Recipe name Version Description
afflib 3.6.6 The Advanced Forensic Format (AFF) is on-disk format for storing computer forensic information.
aircrack-ng 1.2 Aircrack-ng is a set of tools for auditing wireless networks
bastille 3.2.1 Linux hardening tool
buck-security 0.7 Linux security scanner
ccs-tools 1.8.4 Tomoyo
checksec 1.5 Program radominization
checksecurity 2.0.15 basic system security checks
clamav 0.99.2 ClamAV anti-virus utility for Unix - command-line interface
ding-libs 0.5.0 Dynamic hash table implementation
isic 0.07 ISIC -- IP Stack Integrity Checker
lib-perl 0.63 This is a small simple module which simplifies the manipulation of @INC at compile time. It is typically used to add extra directories to Perl's search path so that later 'use' or 'require' statements will find modules which are not located in the default search path.
libewf 20140608 library with support for Expert Witness Compression Format
libhtp 0.5.23 LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces.
libmspack 0.5 A library for Microsoft compression formats
libseccomp 2.3.1+gitX interface to seccomp filtering mechanism
libtpm 1.0+gitX LIBPM - Software TPM Library
libwhisker2-perl 2.5 Libwhisker is a Perl module geared specificly for HTTP testing.
nikto 2.1.5 web server scanner
nmap 7.31 network auditing tool
packagegroup-core-security 1.0 Security packagegroup for Poky
paxctl 0.9 paxctl is a tool that allows PaX flags to be modified on a per-binary basis. PaX is part of common security-enhancing kernel patches and secure distributions, such as GrSecurity or Adamantix and Hardened Gen-too, respectively.
redhat-security 1.0 redhat security tools
samhain-client 4.2.0 Provides file integrity checking and log file monitoring/analysis
samhain-server 4.2.0 Provides file integrity checking and log file monitoring/analysis
scapy 2.3.2 Network scanning and manipulation tool
security-build-image 1.0 A small image for building meta-security packages
security-client-image 1.0 A Client side Security example
security-server-image 1.0 A Serve side image for Security example
sleuthkit 4.1.3 The Sleuth Kit (TSK) is a library and collection of command line tools that allow you to investigate disk images.
smack 1.3.0+gitX Selection of tools for developers working with Smack
sssd 1.13.3+gitX system security services daemon
suricata 3.1.3 The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine
swtpm 1.0 SWTPM - Software TPM Emulator
tpm-tools 1.3.8 The tpm-tools package contains commands to allow the platform administrator the ability to manage and diagnose the platform's TPM.
tpm2.0-tools gitX Tools for TPM2.
tpm2.0-tss git Software stack for TPM2.
tpm2simulator-native 116+gitX TPM 2.0 Simulator Extraction Script
tripwire Tripwire: A system integrity assessment tool (IDS)
trousers 0.3.13 TrouSerS - An open-source TCG Software Stack implementation.