linux-security-audit-tool 0.1.0

Comprehensive Linux security auditing and hardening tool

Linux Security Audit Tool

A comprehensive CLI tool for auditing Linux system security posture.

Install

pip install linux-security-audit-tool

Usage

security-audit --help
security-audit audit
security-audit audit -p 0 -1         # Run specific phases
security-audit audit -o report.md     # Save markdown report
security-audit audit --quiet          # Summary only

CLI

security-audit [OPTIONS] COMMAND [ARGS]...

Options:
  --version  Show the version and exit.
  --help     Show this message and exit.

Commands:
  audit    Run a full security audit.
  version  Show version information.

Development

git clone https://github.com/daedalus/linux-security-audit-tool.git
cd linux-security-audit-tool
pip install -e ".[test]"

# run tests
pytest

# format
ruff format src/ tests/

# lint
ruff check src/ tests/

# type check
mypy src/

API

from security_audit import gather_context, run_identity_checks, calculate_security_score
from security_audit.core import Finding, Severity

# Run a full audit
context = gather_context()
findings = run_identity_checks()
score = calculate_security_score(findings)

Audit Phases

The tool performs security checks across 9 phases:

• Phase 0: Context Gathering (hostname, OS, kernel)
• Phase 1: Identity & Access Control (users, sudo, SSH)
• Phase 2: Network Exposure (listening services, firewall)
• Phase 3: File System & Permissions (SUID, world-writable)
• Phase 4: Process & Service Posture (running services)
• Phase 5: Kernel & OS Hardening (sysctl, ASLR)
• Phase 6: Logging & Monitoring (auditd, logs)
• Phase 7: Package & Update Hygiene (updates, repos)
• Phase 8: Cryptographic Posture (SSH keys, TLS)