mirrors/opensnitch: OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.

mirror of https://github.com/evilsocket/opensnitch.git synced 2025-03-04 00:24:40 +01:00

OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.

application-firewall data-breach firewall linux networking security

Find a file

Gustavo Iñiguez Goia c0d1da20d2 improved rules reloading, cli parameters - When reloading rules from a path: stop existing (domains,ips,regexp) lists monitors, stop rules watcher and start watching the new dir for changes, delete existing rules from memory, etc. - Previously, cli parameters (queue number, log file, etc) were taking into account before loading the configuration. Now the configuration file is loaded first (default-config.json), and if any of the cli parameter has been specified, it'll overwrite the loaded configuration from file. This means for example that if you use "-process-monitor-method proc", and "ebpf" is configured in default-config.json, firstly "ebpf" will be configured, and later "proc". (-queue-num option for now requires to match config option cfg.FwOptions.QueueNumber)		2024-05-22 00:47:54 +02:00
.github	ci: use go1.20 compiler	2023-10-23 20:32:29 +02:00
daemon	improved rules reloading, cli parameters	2024-05-22 00:47:54 +02:00
ebpf_prog	ebpf: performance improvement for opensnitch-procs	2024-04-29 01:06:39 +02:00
proto	rules: improved operator list parsing and conversion	2023-10-09 14:55:15 +02:00
screenshots	added more screenshots	2020-02-25 22:39:32 +01:00
ui	ui,prefs: node auth settings improvements	2024-05-18 21:56:17 +02:00
utils	pkgs: improved rpm upgrades	2024-02-02 14:16:16 +01:00
.gitignore	misc	2023-07-23 22:29:47 +02:00
LICENSE	Update LICENSE	2020-06-20 17:48:59 +02:00
Makefile	makefile:	2021-02-13 18:48:49 +03:00
README.md	addded donations section	2023-06-12 16:19:10 +02:00
release.sh	misc: small fix or general refactoring i did not bother commenting	2018-04-10 19:49:58 +02:00

README.md

OpenSnitch is a GNU/Linux application firewall.

•• Key Features • Download • Installation • Usage examples • In the press ••

OpenSnitch

Key features

Interactive outbound connections filtering.
Block ads, trackers or malware domains system wide.
Ability to configure system firewall from the GUI (nftables).
- Configure input policy, allow inbound services, etc.
Manage multiple nodes from a centralized GUI.
SIEM integration

Download

Download deb/rpm packages for your system from https://github.com/evilsocket/opensnitch/releases

Installation

deb

$ sudo apt install ./opensnitch*.deb ./python3-opensnitch-ui*.deb

rpm

$ sudo yum localinstall opensnitch-1*.rpm; sudo yum localinstall opensnitch-ui*.rpm

Then run: $ opensnitch-ui or launch the GUI from the Applications menu.

Please, refer to the documentation for detailed information.

OpenSnitch in action

Examples of OpenSnitch intercepting unexpected connections:

https://github.com/evilsocket/opensnitch/discussions/categories/show-and-tell

Have you seen a connection you didn't expect? submit it!

In the press

Donations

If you find OpenSnitch useful and want to donate to the dedicated developers, you can do it from the Sponsor this project section on the right side of this repository.

You can see here who are the current maintainers of OpenSnitch: https://github.com/evilsocket/opensnitch/commits/master

Contributors

See the list

Translating