Rootkit Hunter

Rootkit Hunter (rkhunter) is the tool to find evidence of malicious software on systems running Linux, Mac OS X, and UNIX. As the original author of this tool, I released the first version in 2003. In 2006, the project was handed over to a new team, to ensure its development kept going.


  • Both the tool and my name have been listed in several printed magazines
  • rkhunter is part of the LPI 303 exam objectives


After the lessons learned from Rootkit Hunter, I started a new project with a broader goal: help people improving security defenses on their systems. Also focused on Linux, Mac OS X, and UNIX systems. This auditing and hardening tool is still under development since its original release in 2007.

Linux Audit

Linux Audit is one of the rare Linux security blogs available. Articles cover topics in-depth with the goal to be available to both beginners and more advanced Linux users. The blog was created by me in 2014 as a research project and knowledge sharing hub. It is an ongoing project and new articles are published after extensive research. Quality above quantity.

Linux Security Expert

The LSE project consists of a Linux security training, security tools, and other resources. Its goal is to become a one-stop place for Linux security, whenever one is seeking to learn or doing practical tasks for better understanding.

InfoSec CFPs

If you like speaking engagements, you know how hard it is to keep up with the ongoing Call for Papers. I maintain a Twitter handle to retweet CFPs of conferences that are related to information security. This side project helps you to see which CFPs are interesting for you and helps organizers of conferences to be more submissions. The Twitter handle is @infosec_cfp.