Audit05 — Linux System Auditing
Real-time security auditing for Ubuntu and Pop!_OS. Monitor network connections, detect anomalies, receive threat intelligence, and get push alerts—all from a unified platform. 100% local, no telemetry, open source core.
Key Features
Everything Audit05 — Linux System Auditing offers to secure and strengthen your organization.
Real-time network monitoring
Behavior-based anomaly detection
Threat intelligence (VirusTotal, blocklists)
Real-time web dashboard with WebSocket
30+ CLI commands for investigation
Push notifications via ntfy
Automatic PDF reports (daily/weekly/monthly)
100% local, no telemetry
What is Audit05?
Audit05 is a comprehensive Linux security auditing system that gives you full visibility into your system's security posture.
Network Visibility
See all incoming and outgoing connections in real time, with automatic DNS resolution.
Threat Detection
Automatically detect anomalies, suspicious IPs, and unusual process behavior.
Deep Investigation
GeoIP lookup, VirusTotal checks, blocklist verification, nmap/tcpdump integration.
Instant Alerts
Push notifications to your phone via ntfy, real-time web dashboard, automatic PDF reports.
Who Is It For?
System Administrators
Continuous monitoring of Ubuntu servers with real-time alerts and automated reporting.
Security Teams
Post-incident auditing, forensic analysis, and continuous compliance monitoring.
Developers
Understand what your processes are doing in the background and catch unwanted behavior.
Advanced Users
Full control over your machine's security with a powerful CLI and web dashboard.
Technology Stack
| Component | Technology |
|---|---|
| Language | Python 3.8+ |
| CLI Framework | Click |
| API / Dashboard | FastAPI + Uvicorn + WebSocket |
| Database | SQLite (WAL mode) |
| System Monitoring | psutil |
| PDF Reports | reportlab, matplotlib, seaborn |
| Scheduling | APScheduler |
| Frontend | HTML + TailwindCSS + Vanilla JS |
Why Audit05?
100% Local
No telemetry, no data sent anywhere. Everything runs on your machine. Privacy by design.
Modular & Extensible
Clean architecture. Each component is independent. Add or remove modules as needed.
Zero-Config
Works from the first collect. Fully configurable when you need it.
Open Source
MIT licensed. Audit it, modify it, redistribute it. Built for the security community.
Related Products
Explore our complete product lineup for comprehensive security coverage.