Red Sanity

Red Sanity is a small collection of tools to inspect a running linux kernel for inconsistencies.

The Red Sanity suite was developed for in house use after one of our machines in the cloud was infected with a rogue process that had no obvious equivalent on the file system.

It can only be assumed that the attack was executed via the cloud provider's hypervisor.

Red Sanity is based on the principles of attestation.

Please contact us for more information when interested.