Core Lab: Diagnostic & Hardening Toolkit
Welcome to the official script repository for CoreLab.tech. This toolkit is designed for homelabbers, self-hosters, and cybersecurity enthusiasts who want to move from "default settings" to a hardened, optimized infrastructure.
Included Tools
A cross-platform diagnostic tool to visualize your network topology.
- Detects: CG-NAT, Double NAT, and "Green Light" public paths.
- Health Check: Identifies DNS leaks, upstream resolvers, and measures latency to major edge nodes.
- Compatibility: Linux (Bash), macOS (Zsh), and Windows (PowerShell).
An interactive script to take a fresh Debian 13 (Trixie) VPS from "vulnerable" to "production-ready."
- Security: SSH hardening, custom ports, and Fail2Ban integration.
- Performance: Automatic zRAM (zstd) configuration and sysctl RAM optimizations.
- Ease of Use: Optional Docker/Docker Compose and CLI utility installation.
A PowerShell equivalent for Windows-based homelab hosts.
- Optimization: Enables native Windows Memory Compression.
- Access: Securely configures OpenSSH server and Windows Firewall.
One-Liner Execution - You can run these tools directly without cloning the repository!
You may have to install curl first: apt install curl -y
Linux/macOS:
curl -sL https://raw.githubusercontent.com/corelabjoe/corelab-tools/main/diagnostics/audit.sh | bashIn Windows PowerShell:
irm https://raw.githubusercontent.com/corelabjoe/corelab-tools/main/diagnostics/audit.ps1 | iexLinux/macOS:
curl -sL https://raw.githubusercontent.com/corelabjoe/corelab-tools/main/hardening/harden.sh | bashirm https://raw.githubusercontent.com/corelabjoe/corelab-tools/main/hardening/harden.ps1 | iexLicense & Attribution These tools are released under the MIT License. You are free to use, modify, and distribute them. Attribution back to CoreLab.tech is appreciated.
Community If you find a bug or have a feature request, please open an Issue or submit a Pull Request.
Stay curious. Stay secure. - Joe, Core Lab