Stats
Actions
Tags
From linux-av-manager
Install the optional advanced security-audit layer on top of the core AV set — Lynis (system hardening audit), chkrootkit (second-opinion rootkit scanner), AIDE (file integrity DB), debsecan (Debian/Ubuntu CVE scanner). Lets the user pick a subset; doesn't force the full stack. Triggers on "install lynis", "add advanced AV tools", "install rootkit/audit tools".
How this skill is triggered — by the user, by Claude, or both
Slash command
/linux-av-manager:install-advancedThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
Layered on top of `install-core`. The user picks which of these they want — none are mandatory and they have different audiences (Lynis is broad hardening; AIDE is intrusion-detection baseline; chkrootkit complements rkhunter; debsecan is Debian-family CVE scanning).
Layered on top of install-core. The user picks which of these they want — none are mandatory and they have different audiences (Lynis is broad hardening; AIDE is intrusion-detection baseline; chkrootkit complements rkhunter; debsecan is Debian-family CVE scanning).
${CLAUDE_USER_DATA:-${XDG_DATA_HOME:-$HOME/.local/share}/claude-plugins}/linux-av-manager/config.json
If missing → call onboard first. Recommend (but don't require) running install-core first.
| Tool | Purpose | Debian/Ubuntu (apt) | Fedora (dnf) | Arch (pacman) |
|---|---|---|---|---|
| Lynis | System hardening audit | lynis | lynis | lynis |
| chkrootkit | Second-opinion rootkit scanner | chkrootkit | chkrootkit | chkrootkit (AUR) |
| AIDE | File integrity baseline | aide | aide | aide |
| debsecan | Debian/Ubuntu CVE scanner | debsecan | n/a | n/a |
Skip debsecan automatically on non-Debian systems; flag the omission.
sudo lynis audit system as the canonical command. (scan skill wraps this.)bindshell); the scan skill flags these.sudo aideinit (Debian wrapper) or sudo aide --init then move /var/lib/aide/aide.db.new → /var/lib/aide/aide.db. Only run on a known-clean system — surface this and let the user defer./etc/debsecan/config).config.json — set the relevant installed.<tool> flags to true.update-definitions to sync everything, or scan to run./var/lib/aide/aide.db. After legitimate system changes (package updates, config edits), the user must rebuild via sudo aide --update and promote the new DB. Mention this — false positives are otherwise constant.Guides creation, editing, and verification of skills for AI coding agents using test-driven development with subagent scenarios. Use when authoring or debugging skills.
npx claudepluginhub danielrosehill/claude-code-plugins --plugin linux-av-manager