Skip to main content Start of main content

Fedora Security Lab

The Fedora Security Lab provides a safe test environment to work on security auditing, forensics, system rescue and teaching security testing methodologies in universities and other organizations.

The spin is maintained by a community of security testers and developers. It comes with the clean and fast Xfce Desktop Environment and a customized menu that provides all the instruments needed to follow a proper test path for security testing or to rescue a broken system. The Live image has been crafted to make it possible to install software while running, and if you are running it from a USB stick created with LiveUSB Creator using the overlay feature, you can install and update software and save your test results permanently.

Featured Applications

Etherape

EtherApe is a graphical network monitor for UNIX modeled after etherman. It displays network activity graphically.

Ettercap

Ettercap is a comprehensive suite for man in the middle attacks.

Medusa

Medusa is intended to be a speedy, massively parallel, modular, login brute-forcer.

Nmap

Nmap is a free and open source utility for network discovery and security auditing.

Scap-workbench

A GUI tool that serves as an SCAP scanner and provides tailoring functionality for SCAP content.

Skipfish

Skipfish is an active web application security reconnaissance tool.

Sqlninja

A tool targeted to test SQL Injection vulnerabilities on a web application using Microsoft® SQL Server as its back-end.

Wireshark

Wireshark is a network traffic analyzer for UNIX-ish operating systems.

Yersinia

Yersinia is a network tool designed to take advantage of some weakness in different network protocols.

Download Fedora Security Lab 40

RELEASE DATE: Tuesday, April 23, 2024

Show Beta downloads

For Intel and AMD x86_64 systems

Fedora Security Lab 40Live ISOiso2.3 GiB

No files available for this version.

We take security seriously

Once you have downloaded an image, be sure to verify it for both security and integrity.

By calculating the image’s checksum on your own computer and comparing it to the original checksum, you can verify the image has not been tampered with or corrupted. Images are also gpg signed with Fedora keys to demonstrate their integrity.

  • Click the verify button to download the checksum file for your downloaded image.

  • Import Fedora's GPG key(s)

                    curl -O https://fedoraproject.org/fedora.gpg
                  

    You can verify the details of the GPG key(s) here.

  • Verify the checksum file is valid

                    gpgv --keyring ./fedora.gpg Fedora-Labs-40-1.14-*-CHECKSUM
                  
  • Verify the checksum matches

                    sha256sum -c Fedora-Labs-40-1.14-*-CHECKSUM
                  

If the output states that the file is valid, then it's ready to use!

By clicking on and downloading Fedora, you agree to comply with the Fedora Export Control Policy.