Not orgsec. Not infosec. Not opsec. Hopefully just a small thorn in the side of your adversaries.
Problem: "I hunt sysadmins" - https://theintercept.com/2014/03/20/inside-nsa-secret-efforts-hunt-hack-system-administrators/
Solution: "Sysadmins of the world unite!" - https://www.youtube.com/watch?v=hzhtGvSflEk
@ThornSec - https://twitter.com/ThornSec
- help systems and networks be more secure than default;
- complete operational transparency;
- facilitate cooperation amongst sysadmins;
- minimal pre-requisites;
- avenue for learning with others.
Explore more of the rationale behind ThornSec.
Learn how to use the system to conduct audits and to configure systems automatically.
- What command should a sysadmin run to check if there is an issue?
- What should the ouput of that command be if the test is passed or failed?
- Bonus points: what command should a sysadmin run to resolve the issue?
If you can answer the first 2 questions then get in touch or write the appropriate test for inclusion into the codebase. If you can answer question 3 thats even better!
Learn more about the structure behind ThornSec so you can contribute.
or the many other similar systems but all can be installed, audited and configured with suitable profiles.
Not for use by governments of United Kingdom, United States and Israel.