Stay Ahead With Linux Security Features
security advisory attack A Linux server gets cleaned up after an intrusion. The suspicious process is terminated, credentials are rotated, and the system is rebooted during maintenance. Everything seems secure. A few hours later, the same outbound connection appears again. . Situations like that point to persistence . The attacker no longer needs the original exploit because something on the host continues restoring access behind the scenes. Finding that mechanism is often more important than understanding how the...
Jun 08, 2026
threat detection scalability Building a SIEM is easier than scaling one. Most open-source deployments start as a simple "all-in-one" server. It is easy to set up, but that design rarely survives the transition from a lab to a production workload. . A SIEM watching 20 endpoints is not doing the same job as one watching 500. More endpoints mean more logs; more logs require more storage; more storage makes search heavier. Eventually, the very architecture that made your lab easy to deploy becomes the reason your production...
Jun 04, 2026
security advisory apache A newly disclosed attack technique called HTTP/2 Bomb is drawing attention because it targets the software that sits at the front of much of the Linux internet. Apache HTTP Server, NGINX, Envoy, and the ingress layers that many Kubernetes environments depend on can be forced into consuming disproportionate amounts of memory using relatively small amounts of attacker traffic. . For Linux administrators, the concern is not the HTTP/2 protocol itself. It is the possibility that a single...
Jun 04, 2026
security advisory important The compromise of Nx Console shows how much infrastructure now sits behind a single developer account. GitHub repositories, CI/CD pipelines, container build systems, Terraform projects, Kubernetes deployments. None of those systems was the initial target. The workstation was. . Attackers did not need a Linux privilege escalation bug or a remote code execution chain. They needed developers to trust a tool they were already using. For many organizations, that was enough. What Happened? Federal...
Jun 03, 2026
security advisory open-source You remove the malware. You rotate the compromised credentials. You patch the original vulnerability and close the ticket. Two weeks later, the attacker is back. . What happened? You didn't lose the battle at the exploit; you lost it at the cleanup. In many modern Linux intrusions, the malware you found wasn't the main problem—it was the fallback mechanisms left behind. These hooks quietly restore attacker access the moment you look away. If you clean a host but miss these persistence layers,...
Jun 02, 2026
Refine features
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security features
We found -3 articles for you...
102
online privacyshell scripttransparent proxyImprove Privacy Using archtorify and kalitorify on Arch and Kali Linux
With the growing number of espionage scandals in recent years and the prevalence of online tracking, protecting your privacy online has never been more important. Virtually everything we do online is tracked these days, whether for profit or to obtain information to sell to third parties, which has led to the development of tools like the Tor Browser to help us navigate the Internet safely and strengthen our privacy online. . If you are an Arch Linux or Kali Linux user looking to improve your privacy online with Tor, this article will explain how you can create a Transparent Proxy through the Tor Network to redirect all traffic of your OS through the Tor Network with two two free and open-source shell scripts we love: archtorify and kalitorify . What Is the Tor Browser & How Can It Help Protect Your Privacy & Anonymity Online? The Tor Browser is an increasingly popular web browser that anonymizes your web traffic using the Tor network, making it easy to protect your privacy and anonymity online. Tor consists of a three-layer proxy, like layers of its onion logo. Tor Browser connects at random to one of the publicly listed entry nodes, bounces that traffic through a randomly selected middle relay, and finally spits out your traffic through the third and final exit node. The Tor Browser offers the best anonymous web browsing available today, and is an essential tool for anyone concerned with his or her online privacy. How To Install & Use archtorify to Redirect All Arch Linux Traffic through the Tor Network archtorify is a shell script for Arch Linux which uses iptables settings to create a Transparent Proxy through the Tor Network. In simpler terms, archtorify enables you to redirect all traffic of your Arch Linux operating system through the Tor Network. The program, which was developed by brainf+ck , also allows you to perform various checks like checking the Tor Exit Node (i.e. your public IP address when you are under Tor proxy), or if Tor has been configured correctly bychecking service and network settings. How To Install archtorify To install dependencies, run the commands: sudo pacman -Syu sudo pacman -S tor To install the archtorify package from AUR (recommended), use the following command: AUR: archtorify-git To download with git, use the command: git clone GitHub - brainfucksec/archtorify: Transparent proxy through Tor for Arch Linux OS archtorify can also be installed with the make command: cd archtorify/ sudo make install Because services and programs that use archtorify (such as iptables) work at the kernel level, be sure to reboot your OS at the end of the installation to avoid conflicts. How To Run archtorify Before starting archtorify: 1. Make sure you have read the Security section. 2. Disable your firewall or other applications related to DNS or proxy configurations. 3. Make a backup of the iptables rules if they are present, see: iptables . Once you have completed the above, run the following command to start a transparent proxy through Tor: archtorify --tor To return to clearnet, run the command: archtorify --clearnet You can view the Commands list for archtorify on Github . How To Install & Use kalitorify to Redirect All Kali Linux Traffic through the Tor Network Similar to archtorify and also developed by brainf+ck , kalitorify is a shell script for Kali Linux which use iptables settings to create a Transparent Proxy through the Tor Network to redirect all traffic of your Kali Linux operating system through the Tor Network. Like archtorify, kalitorify allows Kali Linux users to perform various checks like checking the Tor Exit Node (i.e. your public IP address when you are under Tor proxy), or if Tor has been configured correctly by checking service and network settings. How To Install kalitorify To download with git, use the command: git clone GitHub - brainfucksec/kalitorify: Transparent proxy through Tor for Kali Linux OS To install dependencies, runthe commands: sudo apt-get update && sudo apt-get dist-upgrade -y sudo apt-get install -y tor curl To install kalitorify, run the following commands: cd kalitorify/ sudo make install Because services and programs that use kalitorify (such as iptables) work at the kernel level, be sure to reboot your OS at the end of the installation to avoid conflicts. How To Run kalitorify Before starting kalitorify: 1. Make sure you have read the Security section. 2. Disable your firewall or other applications related to DNS or proxy configurations. 3. Make a backup of the iptables rules if they are present, see: iptables . Once you have completed the above, run the following command to start a transparent proxy through Tor: kalitorify --tor To return to clearnet, run the command: kalitorify --clearnet You can view the Commands list for kalitorify and a demo of the program on Github . Security Considerations It should be noted that users looking for a more secure solution to connect to the Tor Network should use Whonix OS or Tails OS , as a Transparent Proxy is considered unstable by the Tor project team (although by running several tests on kalitorify you will discover no leaks ). It is also important to avoid starting the Tor Browser when transparent browsing (kalitorify) is active. An Open Letter to the Community from the Brains behind archtorify & kalitorify My "name" is brainf+ck. I know that is not a nice nickname, but it comes from the esoteric programming language " Brainfuck ". Over the years, I have developed a lot of respect for Science, and for Computer Science. Often, this continuous study and research leaves me exhausted, but it has also taught me that in life you should never give up, that one must persevere, always. My goal is to make a difference in the community, by raising awareness of the benefits of Open Source and helping people protect their security and privacy online. If I can train people to use FOSS products (with all thedifficulties that come with them), I will try. If I can train people to install an application that is more secure, I'll try. If I can offer a free service, I'll try. If I can program a useful application for security and privacy, I'll try. I am thankful for those who express interest in my work by offering support and feedback on my projects. - brainf+ck Next Steps In the words of brainf+ck: “A user who uses these programs or is interested in these areas must be invited to inform himself. I think that using security or privacy applications without knowing what you are using is very dangerous. Please explore archtorify and kalitorify on Github, download the programs and test them out. Do not hesitate to inquire and perhaps report what can be improved!” Found this article helpful? Be sure to frequent LinuxSecurity.com and follow LinuxSecurity on social media to learn about other Linux security tools to help improve your security and privacy online. Connect with LinuxSecurity on social media: Twitter | Facebook | LinkedIn . Learn techniques to boost your web anonymity using Arch and Kali Linux with archtorify and kalitorify while routing traffic through Tor.. Transparent Proxy, Privacy Enhancement, Tor Network, Privacy Tools, ArchLinux. . Brittany Day
Apr 18, 2022
•
102
data protectionencryptionsecurity enhancementHow to Encrypt Shell Scripts Using SHC Utility for Improved Security
Do you have scripts that contain sensitive information like passwords and you pretty much depend on file permissions to keep it secure? If so, then that type of security is good provided you keep your system secure and some user doesn't have a "ps -ef" loop running in an attempt to capture that sensitive info (though some applications mask passwords in "ps" output). There is a program called "shc" that can be used to add an extra layer of security to those shell scripts. SHC will encrypt shell scripts using RC4 and make an executable binary out of the shell script and run it as a normal shell script. This utility is great for programs that require a password to either encrypt, decrypt, or require a password that can be passed to a command line argument. . Download shc ( http://www.datsi.fi.upm.es/~frosal/ ) and untar it: tar -xzvf shc-X.X.tgz cd shc-X.X/ make make install A binary named " shc " will be created along with some test programs. Let's give it a try. Create a file called: " script.sh " and add the following contents: ############################### script.sh ############################## #!/bin/sh echo "I love Duane's articles and will send him a donation via PayPal." ############################### script.sh ############################## Now run the command: shc -f script.sh The switch " -f " specifies the source script to encrypt. The above command will create two files: script.sh.x.c and script.sh.x . The program " shc " creates C source code out of your shell script then encrypts it ( script.sh.x.c ). The encrypted shell script is: script.sh.x . Run that binary and see the output: ./script.sh.x I love Duane's articles and will send him a donation via PayPal. Now copy the original " script.sh " file to a floppy disk or some other system for backup or in case you need to edit it in the future. Then, delete it from the server and delete the " script.sh.x.c " file itcreates. Neat feature You can also specify a time limit on the shell script so that it will no longer execute after a certain date and you can specify a custom message to echo back to the user. Run this command on the " script.sh " file we created earlier in this tut: shc -e 09/10/2004 -m "Dude it is too late to run this script." -f script.sh ./script.sh.x ./script.sh.x has expired! Dude it is too late to run this script. In the above command the date October 9, 2004 is set as the expiration date ( -e 09/10/2004 ) and the custom message was set to display to the user ( -m "Dude it is too late to run this script." ) when the binary is executed. Note the date format is dd/mm/yyyy. Check out the man pages for more info on " shc ". Remember that the binary is only encrypted on the local system. If you encrypt a script that transmits sensitive information in clear text across a network, you will need some other encrypted communication channel to transmit that information. Duane Dunston received his B.A. and M.S. degrees from Pfeiffer University and he has his GSEC certification from SANS. Hey,Ann Curry! . Discover the method of securing your shell scripts by employing shc, which provides an extra layer of protection against the potential leakage of confidential data.. Shell Script Encryption, SHC Utility, Secure Scripts, Data Protection. . Duane Dunston
Mar 02, 2010
•
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
Discover faster search, smarter navigation, and deeper Linux security insights. Read More