Comprehensive Linux security auditing and hardening tool

These details have been verified by PyPI

Project links

GitHub Statistics

Maintainers

dclavijo

These details have not been verified by PyPI

Project description

Linux Security Audit Tool

A comprehensive CLI tool for auditing Linux system security posture.

For all the checks to effectively be done this tool it needs root access.

Install

python3 -m venv venv
source venv/bin/activate
pip install linux-security-audit-tool

Usage

sudo env "PATH=$PATH" security-audit --help
sudo env "PATH=$PATH" security-audit audit
sudo env "PATH=$PATH" security-audit audit -p 0 -1           # Run specific phases
sudo env "PATH=$PATH" security-audit audit -o report.md      # Save markdown report
sudo env "PATH=$PATH" security-audit audit --quiet           # Summary only
sudo env "PATH=$PATH" security-audit audit --debug           # Show executed commands
sudo env "PATH=$PATH" security-audit audit --remediate-all   # Generate remediation script for all findings
sudo env "PATH=$PATH" security-audit audit --remediate-only-critical  # Generate remediation script for CRITICAL only
sudo env "PATH=$PATH" security-audit audit --remediate-non-critical   # Generate remediation script for non-CRITICAL
sudo env "PATH=$PATH" security-audit audit --pdf report.pdf  # Generate PDF report

CLI

security-audit [OPTIONS] COMMAND [ARGS]...

Options:
  --version  Show the version and exit.
  --help     Show this message and exit.

Commands:
  audit    Run a full security audit.
  version  Show version information.

Audit Command Options

--output, -o FILE - Output file for markdown report
--phases, -p [0-9] - Specific phases to run (can be repeated)
--quiet, -q - Suppress detailed output
--verbose, -v - Show descriptions and remediation
--debug, -d - Show low-level commands being executed
--remediate-all, -r - Generate remediation script for all findings
--remediate-only-critical - Generate remediation script for CRITICAL findings only
--remediate-non-critical - Generate remediation script for non-CRITICAL findings
--remediate-script FILE - Save remediation script to file
--pdf FILE - Generate PDF executive report
--cache - Enable caching of check results
--cache-ttl INTEGER - Cache TTL in seconds (default: 3600)

Development

git clone https://github.com/daedalus/linux-security-audit-tool.git
cd linux-security-audit-tool
pip install -e ".[test]"

# run tests
pytest

# format
ruff format src/ tests/

# lint
ruff check src/ tests/

# type check
mypy src/

API

from security_audit import gather_context, run_identity_checks, calculate_security_score
from security_audit.core import Finding, Severity

# Run a full audit
context = gather_context()
findings = run_identity_checks()
score = calculate_security_score(findings)

Audit Phases

The tool performs security checks across 9 phases:

Phase 0: Context Gathering (hostname, OS, kernel)
Phase 1: Identity & Access Control (users, sudo, SSH)
Phase 2: Network Exposure (listening services, firewall, sysctl)
Phase 3: File System & Permissions (SUID, world-writable, cron)
Phase 4: Process & Service Posture (services, AppArmor, SELinux, rkhunter)
Phase 5: Kernel & OS Hardening (sysctl, ASLR, module blacklist)
Phase 6: Logging & Monitoring (auditd, logs, syslog)
Phase 7: Package & Update Hygiene (updates, repos)
Phase 8: Cryptographic Posture (SSH keys, TLS, password hashing)

Project details

These details have been verified by PyPI

Project links

GitHub Statistics

Maintainers

dclavijo

These details have not been verified by PyPI

Release history Release notifications | RSS feed

0.1.9

Apr 8, 2026

This version

0.1.8

Apr 8, 2026

0.1.7

Apr 7, 2026

0.1.6

Apr 6, 2026

0.1.5

Apr 6, 2026

0.1.4

Apr 6, 2026

0.1.3

Apr 6, 2026

0.1.2

Apr 6, 2026

0.1.1

Apr 6, 2026

0.1.0

Apr 4, 2026

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

linux_security_audit_tool-0.1.8.tar.gz (37.0 kB view details)

Uploaded Apr 8, 2026 Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

The dropdown lists show the available interpreters, ABIs, and platforms. Enable javascript to be able to filter the list of wheel files.

linux_security_audit_tool-0.1.8-py3-none-any.whl (45.6 kB view details)

Uploaded Apr 8, 2026 Python 3

File details

Details for the file linux_security_audit_tool-0.1.8.tar.gz.

File metadata

Download URL: linux_security_audit_tool-0.1.8.tar.gz
Upload date: Apr 8, 2026
Size: 37.0 kB
Tags: Source
Uploaded using Trusted Publishing? Yes
Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for linux_security_audit_tool-0.1.8.tar.gz
Algorithm	Hash digest
SHA256	`5ec2d62707b71319ae83ae9824aed97c40e09c2e1cc8a976dc40fc03ccf070a6`
MD5	`9336ddb3152afdd065cda81584b4136b`
BLAKE2b-256	`e165e34a980ae29154d8656b875f6ce048c3b79a12363e54392f98da3649ac8e`

See more details on using hashes here.

Provenance

The following attestation bundles were made for linux_security_audit_tool-0.1.8.tar.gz:

Publisher: pypi-publish.yml on daedalus/linux-security-audit-tool

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Statement:
- Statement type: https://in-toto.io/Statement/v1
- Predicate type: https://docs.pypi.org/attestations/publish/v1
- Subject name: linux_security_audit_tool-0.1.8.tar.gz
- Subject digest: 5ec2d62707b71319ae83ae9824aed97c40e09c2e1cc8a976dc40fc03ccf070a6
- Sigstore transparency entry: 1255129893
- Sigstore integration time: Apr 8, 2026
Source repository:
- Permalink: daedalus/linux-security-audit-tool@718dc7091ab33039a06b0ad984276a7e319bbece
- Branch / Tag: refs/tags/v0.1.8
- Owner: https://github.com/daedalus
- Access: public
Publication detail:
- Token Issuer: https://token.actions.githubusercontent.com
- Runner Environment: github-hosted
- Publication workflow: pypi-publish.yml@718dc7091ab33039a06b0ad984276a7e319bbece
- Trigger Event: release

File details

Details for the file linux_security_audit_tool-0.1.8-py3-none-any.whl.

File metadata

Download URL: linux_security_audit_tool-0.1.8-py3-none-any.whl
Upload date: Apr 8, 2026
Size: 45.6 kB
Tags: Python 3
Uploaded using Trusted Publishing? Yes
Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for linux_security_audit_tool-0.1.8-py3-none-any.whl
Algorithm	Hash digest
SHA256	`0b7341441cc6ffd8b4e8dc60f5ac856e3433be424cffd2b63042dd0e0d5ae664`
MD5	`1aca54055f2ddf6639e7efbdc7eaec99`
BLAKE2b-256	`24b9361ae02a13203dba916201de042bf8ad5a1b8f73fc48c1038c67c28f1037`

See more details on using hashes here.

Provenance

The following attestation bundles were made for linux_security_audit_tool-0.1.8-py3-none-any.whl:

Publisher: pypi-publish.yml on daedalus/linux-security-audit-tool

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Statement:
- Statement type: https://in-toto.io/Statement/v1
- Predicate type: https://docs.pypi.org/attestations/publish/v1
- Subject name: linux_security_audit_tool-0.1.8-py3-none-any.whl
- Subject digest: 0b7341441cc6ffd8b4e8dc60f5ac856e3433be424cffd2b63042dd0e0d5ae664
- Sigstore transparency entry: 1255129994
- Sigstore integration time: Apr 8, 2026
Source repository:
- Permalink: daedalus/linux-security-audit-tool@718dc7091ab33039a06b0ad984276a7e319bbece
- Branch / Tag: refs/tags/v0.1.8
- Owner: https://github.com/daedalus
- Access: public
Publication detail:
- Token Issuer: https://token.actions.githubusercontent.com
- Runner Environment: github-hosted
- Publication workflow: pypi-publish.yml@718dc7091ab33039a06b0ad984276a7e319bbece
- Trigger Event: release

linux-security-audit-tool 0.1.8

Navigation

Verified details

Project links

GitHub Statistics

Maintainers

Unverified details

Meta

Project description

Linux Security Audit Tool

Install

Usage

CLI

Audit Command Options

Development

API

Audit Phases

Project details

Verified details

Project links

GitHub Statistics

Maintainers

Unverified details

Meta

Release history Release notifications | RSS feed

Download files

Source Distribution

Built Distribution

File details

File metadata

File hashes

Provenance

File details

File metadata

File hashes

Provenance