siekman/security-checks
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
Collection of quick security check scripts for Linux vulnerabilities. curl | bash friendly, non-destructive, Ansible compatible.
8 commits 1 branch 0 tags 52 KiB
  • Shell 100%
Find a file
Exact
Jouke Siekman 706f1c93bb quick push
2026-05-14 15:23:46 +02:00
copyfail quick push 2026-05-14 14:08:55 +02:00
dirtycow quick push 2026-05-14 14:08:55 +02:00
nginx-rift quick push 2026-05-14 15:23:46 +02:00
README.md quick push 2026-05-14 15:23:46 +02:00

README.md

security-checks

Collection of quick security check scripts for Linux vulnerabilities. Non-destructive, curl-friendly, Ansible compatible.

Usage

Run any check directly:

curl -sL https://git.siekman.io/siekman/security-checks/raw/branch/main/copyfail/check.sh | bash

Or across your fleet:

ansible all -m shell -a 'curl -sL https://git.siekman.io/siekman/security-checks/raw/branch/main/copyfail/check.sh | bash'

Available checks

Script CVE Description
copyfail/check.sh CVE-2026-31431 Copy Fail - algif_aead local privilege escalation
dirtycow/check.sh CVE-2016-5195 Dirty COW - copy-on-write race condition, local privilege escalation
nginx-rift/check.sh CVE-2026-42945 nginx-rift - rewrite module heap overflow, DoS / RCE

Exit codes

All scripts follow the same convention:

  • 0 - Safe or mitigated
  • 1 - Potentially exposed, mitigate preventively
  • 2 - Vulnerable and exploitable

Requirements

  • bash
  • python3 (optional, used for socket tests)

License

MIT