Checksec
A bash script that analyzes executable files to check security properties like PIE, RELRO, canaries, ASLR, and Fortify Source protections.
Free2,204
Free2,204
Checksec
A bash script that analyzes executable files to check security properties like PIE, RELRO, canaries, ASLR, and Fortify Source protections.
Data verified May 2026
ADYour product here. Reach security decision-makers.Launch a campaignChecksec Description
Checksec is a bash script designed to analyze executable files and assess their security properties and hardening features. The tool examines various security mechanisms implemented in binaries, including: - Position Independent Executable (PIE) support - Relocation Read-Only (RELRO) protection - Stack canaries for buffer overflow protection - Address Space Layout Randomization (ASLR) compatibility - Fortify Source compilation flags The script provides modular functionality with configurable output formats, including CLI and JSON options. Recent updates have enhanced the tool's capabilities to include Clang Control Flow Integrity (CFI) and safe stack checks through an extended analysis mode. Checksec operates through command-line interface with getopts-based option parsing, allowing flexible parameter ordering. The tool includes cryptographic verification features using both Cosign and OpenSSL signature validation to ensure integrity. Originally developed by Tobias Klein, the tool focuses specifically on Linux executables and does not support macOS Mach-O binaries or OSX kernel analysis. The script serves as a security assessment utility for developers and security professionals evaluating binary hardening implementations.
Checksec FAQ
Common questions about Checksec including features, pricing, alternatives, and user reviews.
Checksec is A bash script that analyzes executable files to check security properties like PIE, RELRO, canaries, ASLR, and Fortify Source protections. It is a Application Security solution designed to help security teams with Security Hardening, Linux, Binary Analysis.
Checksec is a free Application Security tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://github.com/slimm609/checksec.sh/ for download and installation instructions.
Popular alternatives to Checksec include:
1.Karambit.AI - Static binary analysis tool detecting behavioral changes in SW supply chain. (Commercial)
2.DerScanner Full Cycle Application Security Testing - Full-cycle app security platform with SAST, DAST, MAST, SCA & binary analysis (Commercial)
3.Delphos Labs Analyze - AI-powered reverse engineering tool for analyzing compiled binaries (Commercial)
4.Kodem C.O.R.E. - Unified engine correlating static & runtime analysis for app security (Commercial)
5.Offensive 360 O360 - SAST tool using virtual compilers to analyze source code for vulnerabilities (Commercial)
Compare these tools and more at https://cybersectools.com/categories/application-security
Checksec is for security teams and organizations that need Security Hardening, Linux, Binary Analysis, Executable Analysis. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other Application Security tools can be found at https://cybersectools.com/categories/application-security
Have more questions? Browse our categories or search for specific tools.
