meta-security
This layer provides security tools, hardening tools for Linux kernels and libraries for implementing security mechanisms.
Git repository
git://git.yoctoproject.org/meta-security web repo
Last commit: 3 years, 6 months ago (gatesgarth branch)
Maintainer
- Armin Kuster email
Dependencies
The meta-security layer depends upon:
| Recipe name | Version | Description |
|---|---|---|
| aircrack-ng | 1.3 | Aircrack-ng is a set of tools for auditing wireless networks |
| apparmor | 3.0 | AppArmor another MAC control system |
| arpwatch | 3.0 | |
| bastille | 3.2.1 | Linux hardening tool |
| buck-security | 0.7 | Linux security scanner |
| ccs-tools | 1.8.4 | Tomoyo |
| checksec | 2.1.0 | Linux system security checks |
| checksecurity | 2.0.15 | basic system security checks |
| chkrootkit | 0.53 | locally checks for signs of a rootkit |
| clamav | 0.101.5 | ClamAV anti-virus utility for Unix - command-line interface |
| ding-libs | 0.5.0 | Dynamic hash table implementation |
| dm-verity-image-initramfs | 1.0 | Simple initramfs image for mounting the rootfs over the verity device mapper. |
| ecryptfs-utils | 111 | The eCryptfs mount helper and support libraries |
| fscryptctl | 0.1.0 | low-level tool handling Linux filesystem encryption |
| google-authenticator-libpam | 1.08 | Google Authenticator PAM module |
| ima-evm-keys | 1.0 | IMA/EMV public keys |
| isic | 0.07 | ISIC -- IP Stack Integrity Checker |
| lib-perl | 0.63 | This is a small simple module which simplifies the manipulation of @INC at compile time. It is typically used to add extra directories to Perl's search path so that later 'use' or 'require' statements will find modules which are not located in the default search path. |
| libest | 3.2.0 | EST is used for secure certificate enrollment and is compatible with Suite B certs (as well as RSA and DSA certificates) |
| libgssglue | 0.4 | Exports a gssapi interface which calls other gssapi libraries |
| libhtp | 0.5.35 | LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. |
| libmhash | 0.9.9.9 | Library of hashing algorithms. |
| libmspack | 1.9.1 | A library for Microsoft compression formats |
| libseccomp | 2.5.0 | interface to seccomp filtering mechanism |
| libwhisker2-perl | 2.5 | Libwhisker is a Perl module geared specificly for HTTP testing. |
| mmap-smack-test | 1.0 | Mmap binary used to test smack mmap attribute |
| ncrack | 0.7 | Network authentication cracking tool |
| nikto | 2.1.6 | web server scanner |
| opendnssec | 2.1.6 | OpenDNSSEC is a policy-based zone signer that automates the process of keeping track of DNSSEC keys and the signing of zones |
| packagegroup-core-security | 1.0 | Security packagegroup for Poky |
| paxctl | 0.9 | paxctl is a tool that allows PaX flags to be modified on a per-binary basis. PaX is part of common security-enhancing kernel patches and secure distributions, such as GrSecurity or Adamantix and Hardened Gen-too, respectively. |
| python3-fail2ban | 0.10.4.0 | Daemon to ban hosts that cause multiple authentication errors. |
| python3-oauth2client | 4.1.3 | Add version info to file paths. |
| python3-privacyidea | 3.3 | identity, multifactor authentication (OTP), authorization, audit |
| python3-scapy | 2.4.3 | Network scanning and manipulation tool |
| python3-suricata-update | 1.1.1 | The tool for updating your Suricata rules. |
| redhat-security | 1.0 | redhat security tools |
| samhain-client | 4.4.2 | Provides file integrity checking and log file monitoring/analysis |
| samhain-server | 4.4.2 | Provides file integrity checking and log file monitoring/analysis |
| samhain-standalone | 4.4.2 | Provides file integrity checking and log file monitoring/analysis |
| security-build-image | 1.0 | A small image for building meta-security packages |
| security-client-image | 1.0 | A Client side Security example |
| security-server-image | 1.0 | A Serve side image for Security example |
| security-test-image | 1.0 | A small image for building meta-security packages |
| smack | 1.3.1 | Selection of tools for developers working with Smack |
| smack-test | 1.0 | Smack test scripts |
| softhsm | 2.6.1 | SoftHSM is an implementation of a cryptographic store accessible through a PKCS #11 interface. |
| sssd | 1.16.5 | system security services daemon |
| suricata | 4.1.9 | The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine |
| tcp-smack-test | 1.0 | Binary used to test smack tcp sockets |
| tripwire | 2.4.3.7 | Tripwire: A system integrity assessment tool (IDS) |
| udp-smack-test | 1.0 | Binary used to test smack udp sockets |