Tripwire is an open-source host-based intrusion detection system (HIDS) that monitors file and directory integrity on Linux systems.…
OpenSSH is the standard tool for secure remote access to Linux servers. It encrypts all traffic between client…
Zimbra Collaboration Suite stores mailbox credentials in its internal LDAP directory. A weak password policy means accounts with…
Let’s Encrypt provides free, automated TLS certificates that expire every 90 days. When running Apache Tomcat as your…
Infection Monkey is an open-source breach and attack simulation (BAS) tool developed by Akamai (formerly Guardicore). It automatically…
AWS Identity and Access Management (IAM) controls who can access what in your AWS account. It handles authentication…
eCryptFS (Enterprise Cryptographic Filesystem) is a POSIX-compliant stacked filesystem encryption layer for Linux. It works by encrypting and…
CFSSL is Cloudflare’s open-source PKI/TLS toolkit written in Go. It works as a certificate authority, certificate generator, and…
ConfigServer Security and Firewall (CSF) is a Stateful Packet Inspection (SPI) firewall and login intrusion detection system for…
Firewalld is a dynamic firewall manager for Linux that uses zones to define trust levels for network connections.…
AIDE (Advanced Intrusion Detection Environment) is a file integrity monitoring tool that creates a database of file attributes…
Running services as root is a security risk. If a process gets compromised, the attacker gains full control…
