Checksec
A bash script that analyzes executable files to check security properties like PIE, RELRO, canaries, ASLR, and Fortify Source protections.
Free2,204
Free2,204
Checksec
A bash script that analyzes executable files to check security properties like PIE, RELRO, canaries, ASLR, and Fortify Source protections.
Data verified Jun 2026
ADYour product here. Reach security decision-makers.Launch a campaignChecksec Description
Checksec is a bash script designed to analyze executable files and assess their security properties and hardening features. The tool examines various security mechanisms implemented in binaries, including: - Position Independent Executable (PIE) support - Relocation Read-Only (RELRO) protection - Stack canaries for buffer overflow protection - Address Space Layout Randomization (ASLR) compatibility - Fortify Source compilation flags The script provides modular functionality with configurable output formats, including CLI and JSON options. Recent updates have enhanced the tool's capabilities to include Clang Control Flow Integrity (CFI) and safe stack checks through an extended analysis mode. Checksec operates through command-line interface with getopts-based option parsing, allowing flexible parameter ordering. The tool includes cryptographic verification features using both Cosign and OpenSSL signature validation to ensure integrity. Originally developed by Tobias Klein, the tool focuses specifically on Linux executables and does not support macOS Mach-O binaries or OSX kernel analysis. The script serves as a security assessment utility for developers and security professionals evaluating binary hardening implementations.
Checksec FAQ
Common questions about Checksec including features, pricing, alternatives, and user reviews.
Checksec is A bash script that analyzes executable files to check security properties like PIE, RELRO, canaries, ASLR, and Fortify Source protections. It is a Threat & Vulnerability Management solution designed to help security teams with Security Hardening, Linux, Binary Analysis.
Checksec is a free Threat & Vulnerability Management tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://github.com/slimm609/checksec.sh/ for download and installation instructions.
Popular alternatives to Checksec include:
1.Orca Cloud Vulnerability Management - Agentless cloud vulnerability management with unified context and prioritization (Commercial)
2.RoboShadow - Automated vulnerability assessment and remediation platform (Commercial)
3.RoboShadow Vulnerability Scanner - Vulnerability scanner for internal & external network security assessment (Free)
4.Lyrie Remedy — AI Auto-Fix for Vulnerabilities - AI agent that auto-detects, patches & verifies server vulns with credit refund on failure. (Commercial)
5.LUNAR Lockdown UNix Auditing and Reporting - A shell script-based Unix security auditing tool that generates scored compliance reports based on CIS frameworks and provides lockdown capabilities with rollback functionality. (Free)
Compare all Checksec alternatives at https://cybersectools.com/alternatives/checksec
Checksec is for security teams and organizations that need Security Hardening, Linux, Binary Analysis, Executable Analysis. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other Threat & Vulnerability Management tools can be found at https://cybersectools.com/categories/threat-management
Have more questions? Browse our categories or search for specific tools.
