GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → ansible → Ansible Lockdown

ansible / Ansible Lockdown

Licence: mit
Ansible playbook roles for security

Labels

ansiblesecurity-automationsecurity-hardening

Projects that are alternatives of or similar to Ansible Lockdown

Centos7 Cis
Ansible CentOS 7 - CIS Benchmark Hardening Script
Stars: ✭ 64 (-84.91%)
Mutual labels:  ansible, security-automation, security-hardening
Content
Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats
Stars: ✭ 1,219 (+187.5%)
Mutual labels:  ansible, security-automation, security-hardening
UBUNTU20-CIS
Ansible role for Ubuntu 2004 CIS Baseline
Stars: ✭ 136 (-67.92%)
Mutual labels:  security-hardening, security-automation
Hardening
Hardening Ubuntu. Systemd edition.
Stars: ✭ 705 (+66.27%)
Mutual labels:  security-automation, security-hardening
Linux Secureboot Kit
Tool for complete hardening of Linux boot chain with UEFI Secure Boot
Stars: ✭ 54 (-87.26%)
Mutual labels:  security-automation, security-hardening
Yams
A collection of Ansible roles for automating infosec builds.
Stars: ✭ 98 (-76.89%)
Mutual labels:  ansible, security-automation
Vuls
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Stars: ✭ 8,844 (+1985.85%)
Mutual labels:  security-automation, security-hardening
Ansible Role Hardening
Ansible role to apply a security baseline. Systemd edition.
Stars: ✭ 188 (-55.66%)
Mutual labels:  ansible, security-hardening
assimilation-official
This is the official main repository for the Assimilation project
Stars: ✭ 47 (-88.92%)
Mutual labels:  security-hardening, security-automation
Go Safeweb
Secure-by-default HTTP servers in Go.
Stars: ✭ 366 (-13.68%)
Mutual labels:  security-hardening
Ansible For Kubernetes
Ansible and Kubernetes examples from Ansible for Kubernetes Book
Stars: ✭ 389 (-8.25%)
Mutual labels:  ansible
Taipan
Web application vulnerability scanner
Stars: ✭ 359 (-15.33%)
Mutual labels:  security-automation
W5
Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台,无需编写代码的安全自动化,使用 SOAR 可以让团队工作更加高效
Stars: ✭ 367 (-13.44%)
Mutual labels:  security-automation
Ansible Role Php
Ansible Role - PHP
Stars: ✭ 396 (-6.6%)
Mutual labels:  ansible
Patrowlmanager
PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
Stars: ✭ 363 (-14.39%)
Mutual labels:  security-automation
Ansible Role Nginx
Ansible role for NGINX
Stars: ✭ 404 (-4.72%)
Mutual labels:  ansible
Magic Modules
Automatically generate Google Cloud Platform support for OSS IaaC Projects
Stars: ✭ 358 (-15.57%)
Mutual labels:  ansible
Trailscraper
A command-line tool to get valuable information out of AWS CloudTrail
Stars: ✭ 352 (-16.98%)
Mutual labels:  security-automation
Ansigenome
A tool to help you gather information and manage your Ansible roles.
Stars: ✭ 418 (-1.42%)
Mutual labels:  ansible
Ansible Role Security
Ansible Role - Security
Stars: ✭ 398 (-6.13%)
Mutual labels:  ansible
View All Similar Projects ➔

Ansible Lockdown

Intro

Ansible Lockdown is a collection of Ansible roles related to security automation. All roles included in this project must meet the contribution guidelines.

Some roles referenced in this project are a collaborative effort between Ansible and our IT Security partner MindPoint Group to provide you with thorough, vetted, and trusted security roles that you can integrate with any of your existing playbooks or as the building blocks for completely new playbooks. Other roles included in this project, while not vetted by MindPoint Group, have been deemed by the maintainers and community to meet the contribution guidelines.

The initial effort is for the development of roles centered around STIG and CIS benchmark baselines. Based on community feedback we'll then proceed with other security guidelines for additional operating systems and applications.

Community

Most of the communication around the project happens on the mailing list. That is best way to stay up to date with what is happening with the project.

For faster feedback, there is an #ansible-lockdown IRC channel on Freenode.

Instructions

In order to use the roles you should first ensure that you have Ansible installed.

To clone the entire project and use the included playbooks:

git clone --recursive https://github.com/ansible/ansible-lockdown.git

You can also install the roles individually from Ansible Galaxy.

STIGS

The standards are pulled directly from DISA.

CIS

The standards are pulled directly from CIS.

Contributing

Contributions to Ansible Lockdown and roles referenced here will follow a similar process to the main Ansible project. Fork the repository, make changes, and submit a pull request. Pull requests should not contain any merges or merge conflicts.

Feature requests and bug reports should all be opened on the project page for the individual role, not here.

Current Build Statuses for Security Roles

Standard OS Repo Galaxy Link Status
DISA STIG RHEL 6 GitHub RHEL6-STIG TBD
DISA STIG RHEL 7 GitHub RHEL7-STIG Build Status
CIS RHEL 7 GitHub RHEL7-CIS Build Status
DISA STIG Windows Server 2012 DC GitHub TBD TBD
DISA STIG Windows Server 2012 MS GitHub TBD TBD
DISA STIG Windows Server 2008R2 MS GitHub TBD TBD
Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].