mirrors/opensnitch: OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.

mirror of https://github.com/evilsocket/opensnitch.git synced 2025-03-04 00:24:40 +01:00

OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.

application-firewall data-breach firewall linux networking security

Find a file

Gustavo Iñiguez Goia 56775cd62a ui,popups: add AppImages' path pattern to the options If the path of the process starts with /tmp/.mount, it typically indicates that the application is an AppImage. These apps create a random directory under /tmp, with the pattern /tmp/.mount_<appId>XXXXXX, where the AppImage is mounted (it's not always the case, but it usually is). `a0373541c1/runtime.c (L202)` The problem is that if you allow the path to the executable, the next time you launch the AppImage, the path won't match the rule, and you'll be prompted again to allow the outbound connection. So as a helper for the users, if we find the path of the process starts with /tmp/.mount_, we add an option to the combo box to select the path, which creates a regular expression to match the AppImage. Requested here: #1066, #543, #408		2023-11-25 00:12:29 +01:00
.github	ci: use go1.20 compiler	2023-10-23 20:32:29 +02:00
daemon	deserialize rules operator list correctly	2023-11-11 02:16:08 +01:00
ebpf_prog	use temporary files instead of piping in ebpf Makefile	2023-07-07 13:28:58 +03:00
proto	rules: improved operator list parsing and conversion	2023-10-09 14:55:15 +02:00
screenshots	added more screenshots	2020-02-25 22:39:32 +01:00
ui	ui,popups: add AppImages' path pattern to the options	2023-11-25 00:12:29 +01:00
utils	Bump GUI version to v1.6.3	2023-08-17 00:28:37 +02:00
.gitignore	misc	2023-07-23 22:29:47 +02:00
LICENSE	Update LICENSE	2020-06-20 17:48:59 +02:00
Makefile	makefile:	2021-02-13 18:48:49 +03:00
README.md	addded donations section	2023-06-12 16:19:10 +02:00
release.sh	misc: small fix or general refactoring i did not bother commenting	2018-04-10 19:49:58 +02:00

README.md

OpenSnitch is a GNU/Linux application firewall.

•• Key Features • Download • Installation • Usage examples • In the press ••

OpenSnitch

Key features

Interactive outbound connections filtering.
Block ads, trackers or malware domains system wide.
Ability to configure system firewall from the GUI (nftables).
- Configure input policy, allow inbound services, etc.
Manage multiple nodes from a centralized GUI.
SIEM integration

Download

Download deb/rpm packages for your system from https://github.com/evilsocket/opensnitch/releases

Installation

deb

$ sudo apt install ./opensnitch*.deb ./python3-opensnitch-ui*.deb

rpm

$ sudo yum localinstall opensnitch-1*.rpm; sudo yum localinstall opensnitch-ui*.rpm

Then run: $ opensnitch-ui or launch the GUI from the Applications menu.

Please, refer to the documentation for detailed information.

OpenSnitch in action

Examples of OpenSnitch intercepting unexpected connections:

https://github.com/evilsocket/opensnitch/discussions/categories/show-and-tell

Have you seen a connection you didn't expect? submit it!

In the press

Donations

If you find OpenSnitch useful and want to donate to the dedicated developers, you can do it from the Sponsor this project section on the right side of this repository.

You can see here who are the current maintainers of OpenSnitch: https://github.com/evilsocket/opensnitch/commits/master

Contributors

See the list

Translating