一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-44228) defense.

This chef cookbook provides secure nginx configurations.

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.

Full set of AppArmor profiles (~ 1400 profiles)

My Windows 11 x64 security hardening guide

⛔ DEPRECATED: A secure jenkins installation

DevSec PostgreSQL Baseline - InSpec Profile

Reproducible curl (and OpenSSL) binaries for Windows

A terraform module to create a VPC with secure default configurations.

Better AWS SSM Session manager CLI client

This chef cookbook provides security configuration for mysql.

CIS Distribution Independent Linux Benchmark - InSpec Profile

DevSec Apache Baseline - InSpec Profile

Lightweight Self-Documenting Design by Contract Programming and Security Hardened mode.

CIS Docker Benchmark - InSpec Profile

First Steps in Ubuntu (Server) / Hardening and Config With Docker

Ansible Role to Automate CIS v1.1.0 Ubuntu Linux 18.04 LTS, 20.04 LTS Remediation

This chef cookbook provides numerous security-related configurations, providing all-round base protection.

This repository is a collection of resources to prepare for the Certified Kubernetes Security Specialist (CKSS) exam.

h2t (HTTP Hardening Tool) scans a website and suggests security headers to apply