서버·미들웨어별 보안 점검 셸 스크립트와 사용법 문서를 모아두는 저장소입니다.
git clone <repo-url> ss-security-toolkit
cd ss-security-toolkit
chmod +x scripts/**/*.sh scripts/run-all.sh
# Auto-detect OS and installed services
sudo ./scripts/run-all.sh
# Run specific checks
sudo ./scripts/run-all.sh linux debian nginxStart at docs/index.md for server-type guides and check IDs.
ss-security-toolkit/
├── docs/
│ ├── index.md ← start here
│ ├── getting-started.md
│ ├── adding-checks.md
│ └── servers/ ← per server type usage
├── scripts/
│ ├── run-all.sh ← batch runner
│ ├── lib/common.sh ← shared helpers
│ ├── linux/ ← OS-agnostic baseline
│ ├── rhel/ ← RHEL, Rocky, AlmaLinux
│ ├── debian/ ← Debian, Ubuntu
│ ├── apache/
│ ├── nginx/
│ ├── mysql/
│ ├── postgresql/
│ └── docker/
└── templates/ ← scaffold for new checks
Each check prints PASS, WARN, FAIL, or SKIP. Exit codes:
| Exit | Meaning |
|---|---|
| 0 | All PASS |
| 1 | WARN only |
| 2 | At least one FAIL |
Apache-2.0 — see LICENSE.