FICHA · AUR

modulejail

Proactively shrink Linux kernel-module attack surface by blacklisting unused modules

  • kernel-hardening-tool
  • CLI
  • System
  • SECURITY
  • Launchable
  • Runs in terminal
official+codex · reviewed · Jun 2, 2026 description in en

Description

Kernel-module attack surface can be reduced by blacklisting modules that are not needed on a host. Administrators use this tool when hardening a Linux system against unexpected module loading.

It changes module-loading policy. Blocking the wrong module can break hardware, storage, networking, or boot workflows, so test carefully and keep recovery access.

How to run

modulejail

Commands: modulejail

Permissions

Permissions not analysed for this source yet.