13 private links
GitHub - evilsocket/opensnitch: OpenSnitch is a GNU/Linux port of the Little Snitch application firewall
OpenSnitch is a GNU/Linux port of the Little Snitch application firewall
Cribl's purpose-built Observability Pipeline gives you the power to collect, reduce, transform, and route machine data from anywhere, to anywhere - from a single interface.
Middleware that can connect log sources and destinations, translating between formats (like syslog, Elastic/filebeat, Splunk)
BloodHound uses graph theory to reveal the hidden and often unintended relationships within an Active Directory environment. Attackers can use BloodHound to easily identify highly complex attack paths that would otherwise be impossible to quickly identify. Defenders can use BloodHound to identify and eliminate those same attack paths.
Also, Ransomulator: https://github.com/zeronetworks/BloodHound-Tools/tree/main/Ransomulator
GitHub - ovh/the-bastion: Authentication, authorization, traceability and auditability for SSH accesses.
ovh Bastion system, a Policy Enforcement Point for administrative ssh sessions
The biggest advantage of systemd service interface is that is offers a common interface to many distinct security features of Linux kernel in a single service definition, where they can be applied along with other service-specific flags.
on using signed ssh keys
Group of three articles on the Kubernetes authentication: