admin/ghost
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
3414d05821fcc80182612853dfcdaf3b6e1d7f9e
ghost/SECURITY.md
pandaadir05 a19c56fe86 Update CI workflow and contribution guidelines
2025-11-20 14:53:24 +02:00

971 B
Raw Blame History

Security Policy

Supported Versions

Version Supported
0.1.x

Authorized Use

Ghost is designed for:

  • Authorized security testing
  • Defensive security operations
  • CTF challenges
  • Security research and education

Reporting Vulnerabilities

Do NOT open public issues for security vulnerabilities.

Contact: Create a private security advisory on GitHub

Response Timeline

  • Acknowledgment: 48 hours
  • Initial assessment: 1 week
  • Critical fixes: 7 days
  • High priority: 30 days

Security Best Practices

  • Test only in authorized environments
  • Run with minimum privileges
  • Keep Ghost updated
  • Sanitize logs before sharing
  • Follow responsible disclosure

Known Limitations

  • Advanced malware may evade detection
  • Kernel rootkits not detectable
  • Platform-specific limitations
  • Performance overhead on production systems

Thank you for helping keep Ghost secure!

Reference in New Issue View Git Blame Copy Permalink