Greysec for packets that pass through the network interface and performs queries on a large internet base (greynoise.io) responsible for mapping robots that perform cyberattack and enumeration robots. When the communication with one of these robots is identified, it is automatically banned through iptables protecting your machine from being enumerated or invaded.
With greysec you will be protected from worms that try to carry out the most varied attacks (Ransoware, Enumeration, Botminer, Botnet, etc.)
To block access we use iptables
# sudo apt-get install -y iptables
Docker needs iptable installed and cap run properties defined (--cap-add=NET_ADMIN --cap-add=NET_RAW) Example:
# docker run --cap-add=NET_ADMIN --cap-add=NET_RAW -it ubuntu
# root(Inside Docker): apt-get update;apt-get install -y iptables;
# curl -LO https://github.com/pedrorsantana/greysec/releases/download/v1.0/greysec; sudo chmod +x greysec; sudo mv greysec /bin/greysec;
# greysec --help
# make
# greysec --key [YOUR_KEY] --interface [YOUR_OPTIONAL_INTERFACE]
👤 Pedro Santana
- Github: @pedrorsantana
- LinkedIn: @https://www.linkedin.com/in/pedro-ricardo-ramos-f-de-santana-a38444134/
Give a ⭐️ if this project helped you!
This README was generated with ❤️ by readme-md-generator