Linux Kernel Module Development
An intensive lab-driven course on kernel internals, LKMs, networking, tracing, secure coding, hardening, and capstone delivery.
View course previewLinux trainings
Multiple Linux trainings for defensive teams.
Open Stealth offers multiple Linux security trainings, with Linux Kernel Module Development as the flagship lab-driven program for teams working close to the kernel.
Training lineup
Flagship, extended, and tooling-focused Linux tracks.
Open Stealth is building a catalog of Linux trainings rather than a single standalone course.
- Linux Kernel Module Development
- Linux in Depth
- Linux Security Tooling
Audience fit
- Security vendors validating Linux coverage
- Blue teams working on detection engineering
- Platform and cloud defenders running Linux fleets
- Instructors who need a serious, lab-heavy curriculum
Course lineup
A growing set of Linux trainings.
The flagship kernel course sits inside a broader catalog that can support shorter, deeper, and more tooling-focused learning tracks.
Linux in Depth
A longer program for teams that want deeper Linux understanding across internals, user/kernel boundaries, debugging, networking, memory, hardening, and system-level reasoning.
Linux Security Tooling
A practical course on building and using Linux security tooling for tracing, analysis, detection workflows, investigation, and defensive validation.
Flagship course
Linux Kernel Module Development module map.
The current flagship course moves from fundamentals into networking, instrumentation, secure implementation, review, and capstone work.
Kernel Internals and Architecture
Lecture material, lab work, and a direct path into defensive reasoning instead of passive slide consumption.
Loadable Kernel Modules
Lecture material, lab work, and a direct path into defensive reasoning instead of passive slide consumption.
Kernel Networking
Lecture material, lab work, and a direct path into defensive reasoning instead of passive slide consumption.
Memory Management
Lecture material, lab work, and a direct path into defensive reasoning instead of passive slide consumption.
Concurrency and Locking
Lecture material, lab work, and a direct path into defensive reasoning instead of passive slide consumption.
Debugging and Tracing
Lecture material, lab work, and a direct path into defensive reasoning instead of passive slide consumption.
Secure Coding
Lecture material, lab work, and a direct path into defensive reasoning instead of passive slide consumption.
Hardening
Lecture material, lab work, and a direct path into defensive reasoning instead of passive slide consumption.
Code Review
Lecture material, lab work, and a direct path into defensive reasoning instead of passive slide consumption.
Capstone
Lecture material, lab work, and a direct path into defensive reasoning instead of passive slide consumption.
Delivery
Delivery options
Choose instructor-led delivery, planned self-paced access, or a tailored internal engagement.
Private team cohort
A structured 5-day run for security vendors, blue teams, and internal platform organizations that need focused instructor-led delivery.
Self-paced plus tutor
Planned self-paced access with gated materials, VM setup guidance, and the OpenStealth tutor.
Custom internal enablement
A tailored engagement for teams that want a narrower kernel, platform, or threat-detection emphasis.