meta-security
This layer provides security tools, hardening tools for Linux kernels and libraries for implementing security mechanisms.
Git repository
git://git.yoctoproject.org/meta-security web repo
Last commit: 2 weeks, 3 days ago (master branch)
Maintainers
| Recipe name | Version | Description |
|---|---|---|
| aide | 0.18.8 | Advanced Intrusion Detection Environment |
| aircrack-ng | 1.6 | Aircrack-ng is a set of tools for auditing wireless networks |
| apparmor | 4.0.3 | AppArmor another MAC control system |
| arpwatch | 3.3 | |
| bastille | 3.2.1 | Linux hardening tool |
| buck-security | 0.7 | Linux security scanner |
| ccs-tools | 1.8.9 | Tomoyo |
| checksec | 2.6.0 | Linux system security checks |
| checksecurity | 2.0.16 | basic system security checks |
| chipsec | 1.13.16 | CHIPSEC: Platform Security Assessment Framework |
| chkrootkit | 0.58b | locally checks for signs of a rootkit |
| clamav | 1.4.3 | ClamAV anti-virus utilities and scanner tools |
| crowdsec | 1.1.1 | CrowdSec is a free, modern & collaborative behavior detection engine, coupled with a global IP reputation network. |
| cryptmount | 6.2.0 | Linux encrypted filesystem management tool |
| ding-libs | 0.6.1 | Dynamic hash table implementation |
| dm-verity-image-initramfs | 1.0 | Simple initramfs image for mounting the rootfs over the verity device mapper. |
| ecryptfs-utils | 111 | The eCryptfs mount helper and support libraries |
| firejail | 0.9.72 | Linux namespaces and seccomp-bpf sandbox |
| fscrypt | 1.1.0 | fscrypt is a high-level tool for the management of Linux filesystem encryption |
| fscryptctl | 1.1.0 | low-level tool handling Linux filesystem encryption |
| glome | 0.1+gitX | GLOME Login Client |
| google-authenticator-libpam | 1.09 | Google Authenticator PAM module |
| ibmswtpm2 | 183-2024-03-27 | IBM's Software TPM 2.0 |
| ibmtpm2tss | 2.2.0 | IBM's Software TPM 2.0 TSS |
| ima-evm-utils | 1.5 | IMA/EVM control utility |
| isic | 0.07 | ISIC -- IP Stack Integrity Checker |
| krill | 0.12.3 | Resource Public Key Infrastructure (RPKI) daemon |
| lib-perl | 0.63 | This is a small simple module which simplifies the manipulation of @INC at compile time. It is typically used to add extra directories to Perl's search path so that later 'use' or 'require' statements will find modules which are not located in the default search path. |
| libgssglue | 0.9 | Exports a gssapi interface which calls other gssapi libraries |
| libhoth | git | Google Hoth USB library |
| libhtp | 0.5.52 | LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. |
| libmhash | 0.9.9.9 | Library of hashing algorithms. |
| libmspack | 1.11 | A library for Microsoft compression formats |
| libtpms | 0.10.0 | LIBPM - Software TPM Library |
| libwhisker2-perl | 2.5 | Libwhisker is a Perl module geared specificly for HTTP testing. |
| lkrg-module | 0.9.7 | Linux Kernel Runtime Guard |
| lynis | 3.1.6 | Lynis is a free and open source security and auditing tool. |
| mmap-smack-test | 1.0 | Mmap binary used to test smack mmap attribute |
| ncrack | 0.7 | Network authentication cracking tool |
| nikto | 2.1.6 | web server scanner |
| opendnssec | 2.1.10 | OpenDNSSEC is a policy-based zone signer that automates the process of keeping track of DNSSEC keys and the signing of zones |
| openscap | 1.4.2 | NIST Certified SCAP 1.2 toolkit |
| openssl-tpm-engine | 0.5.0 | OpenSSL secure engine based on TPM hardware |
| ossec-hids | 3.7.0 | A full platform to monitor and control your systems |
| packagegroup-core-security | 1.0 | Security packagegroup for Poky |
| parsec-service | 1.4.1 | Platform AbstRaction for SECurity Daemon |
| parsec-tool | 0.7.0 | Parsec Command Line Interface |
| pcr-extend | 0.1+gitX | Command line utility to extend hash of arbitrary data into a TPMs PCR. |
| python3-fail2ban | 1.1.0+git | Daemon to ban hosts that cause multiple authentication errors. |
| python3-flask-script | 2.0.6 | Scripting support for flask |
| python3-json2html | 1.3.0 | Python wrapper to convert JSON into a human readable HTML Table representation. |
| python3-oauth2client | 4.1.3 | Add version info to file paths. |
| python3-privacyidea | 3.9.1 | identity, multifactor authentication (OTP), authorization, audit |
| python3-pyinotify | 0.9.6 | Python pyinotify: Linux filesystem events monitoring |
| python3-segno | 1.5.2 | QR Code and Micro QR Code generator for Python 2 and Python 3 |
| python3-suricata-update | 1.3.6 | The tool for updating your Suricata rules |
| python3-tpm2-pytss | 2.3.0 | TPM2 TSS Python bindings for Enhanced System API (ESYS), Feature API (FAPI), Marshaling (MU), TCTI Loader (TCTILdr), TCTIs, policy, and RC Decoding (rcdecode) libraries |
| python3-xmldiff | 2.7.0 | Creates diffs of XML files |
| python3-yamlpath | 3.8.2 | YAML Path and Command-Line Tools |
| redhat-security | 1.0 | redhat security tools |
| samhain-client | 4.5.2 | Provides file integrity checking and log file monitoring/analysis |
| samhain-server | 4.5.2 | Provides file integrity checking and log file monitoring/analysis |
| samhain-standalone | 4.5.2 | Provides file integrity checking and log file monitoring/analysis |
| scap-security-guide | 0.1.78 | |
| security-build-image | 1.0 | A small image for building meta-security packages |
| security-client-image | 1.0 | A Client side Security example |
| security-server-image | 1.0 | A Serve side image for Security example |
| security-test-image | 1.0 | A small image for building meta-security packages |
| smack | 1.3.1 | Selection of tools for developers working with Smack |
| smack-test | 1.0 | Smack test scripts |
| sshguard | 2.5.1 | Intelligently block brute-force attacks by aggregating system logs |
| sssd | 2.10.2 | system security services daemon |
| suricata | 7.0.13 | The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine |
| swtpm | 0.10.0 | SWTPM - Software TPM Emulator |
| tcp-smack-test | 1.0 | Binary used to test smack tcp sockets |
| tpm-quote-tools | 1.0.4 | The TPM Quote Tools is a collection of programs that provide support for TPM based attestation using the TPM quote mechanism. |
| tpm-tools | 1.3.9.2 | The tpm-tools package contains commands to allow the platform administrator the ability to manage and diagnose the platform's TPM. |
| tpm2-abrmd | 3.0.0 | TPM2 Access Broker & Resource Manager |
| tpm2-openssl | 1.3.0 | Provider for integration of TPM 2.0 to OpenSSL 3.0 |
| tpm2-pkcs11 | 1.9.1 | A PKCS#11 interface for TPM2 hardware |
| tpm2-tools | 5.7 | Tools for TPM2. |
| tpm2-tss | 4.1.3 | Software stack for TPM2. |
| tpm2-tss-engine | 1.2.0 | The tpm2-tss-engine project implements a cryptographic engine for OpenSSL. |
| trousers | 0.3.15+gitX | TrouSerS - An open-source TCG Software Stack implementation. |
| udp-smack-test | 1.0 | Binary used to test smack udp sockets |
| Date/time | Errors | Warnings |
|---|---|---|
| March 22, 2026, 3:01 p.m. | 1 | |
| March 18, 2026, 6:11 p.m. | 1 |