Fedora Security List,

I wanted to bring your attention to a new SIG: https://fedoraproject.org/wiki/SIGs/Red_Team

The goal of this SIG is to be Red Hat's upstream cyber community, and focal point for new offensive tooling, exploit curation, standards, and reference architectures.

A number of exciting projects are planned for this SIG, but we already have a working alpha-version of our tool, the Enterprise Linux Exploit Mapper (ELEM) [0]. ELEM lets administrators scan their RHEL or CentOS systems for vulnerabilities that are associated with known exploits in the wild. We’re working on adding Fedora support to ELEM. It currently has only one exploit data source [1], but we’re adding more [2].

We’ll be using this list and #fedora-security for comms, and we’d love your feedback on the SIG and ELEM.

Thanks,
~Jason

[0] - https://github.com/fedoraredteam/elem
[1] - https://www.exploit-db.com
[2] - https://github.com/fedoraredteam/elem/issues?q=is%3Aissue+is%3Aopen+label%3A%22data+sources%22

--
Jason Callaway | jcallaway@redhat.com | (240) 285-9529 | GPG Key 0x81ED4A9A