Chef Windows HardeningThis chef cookbook provides windows hardening configurations for the DevSec Windows baseline profile.
Stars: ✭ 80 (-75.31%)
cis benchmarks auditSimple command line tool to check for compliance against CIS Benchmarks
Stars: ✭ 182 (-43.83%)
Windows hardeningWindows Hardening settings and configurations
Stars: ✭ 148 (-54.32%)
Nixarmornixarmor is a linux hardening automation project
Stars: ✭ 62 (-80.86%)
AmdhAndroid Mobile Device Hardening
Stars: ✭ 95 (-70.68%)
Ffck🦊 & 🧅 hardening
Stars: ✭ 72 (-77.78%)
Sshd configK4YT3X's Hardened OpenSSH Server Configuration
Stars: ✭ 49 (-84.88%)
Chef Ssh HardeningThis chef cookbook provides secure ssh-client and ssh-server configurations.
Stars: ✭ 144 (-55.56%)
Suhosin7Suhosin Extension for PHP 7.x
Stars: ✭ 122 (-62.35%)
metabadgerPrevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
Stars: ✭ 123 (-62.04%)
Puppet Os HardeningThis puppet module provides numerous security-related configurations, providing all-round base protection.
Stars: ✭ 234 (-27.78%)
Mongoaudit🔥 A powerful MongoDB auditing and pentesting tool 🔥
Stars: ✭ 1,174 (+262.35%)
apparmor.dFull set of AppArmor profiles (~ 1400 profiles)
Stars: ✭ 32 (-90.12%)
HayatHayat is a script for report and analyze Google Cloud Platform resources.
Stars: ✭ 55 (-83.02%)
HardentheworldHarden the world is a community driven project to develop hardening guidelines and checklists for common software and devices.
Stars: ✭ 158 (-51.23%)
ZephyrusAuditing & Hardening script for Kubernetes
Stars: ✭ 45 (-86.11%)
HardentoolsHardentools simply reduces the attack surface on Microsoft Windows computers by disabling low-hanging fruit risky features.
Stars: ✭ 2,100 (+548.15%)
apache-baselineDevSec Apache Baseline - InSpec Profile
Stars: ✭ 37 (-88.58%)
SysctlK4YT3X's Hardened sysctl Configuration
Stars: ✭ 128 (-60.49%)
sigilAWS SSM Session manager client
Stars: ✭ 67 (-79.32%)
cis-dil-benchmarkCIS Distribution Independent Linux Benchmark - InSpec Profile
Stars: ✭ 120 (-62.96%)
YobichainYobiChain is your very own private blockchain ecosystem preloaded with database, web & FTP servers and D.A.V.E. (Data Authentication & Verification Engine) and S.A.M. (Smart Asset Management).
Stars: ✭ 91 (-71.91%)
Aws GateBetter AWS SSM Session manager CLI client
Stars: ✭ 294 (-9.26%)
ContentSecurity automation content in SCAP, OSCAL, Bash, Ansible, and other formats
Stars: ✭ 1,219 (+276.23%)
prowlerProwler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.
Stars: ✭ 8,046 (+2383.33%)
chef-mysql-hardeningThis chef cookbook provides security configuration for mysql.
Stars: ✭ 23 (-92.9%)
Nginx BaselineDevSec Nginx Baseline - InSpec Profile
Stars: ✭ 71 (-78.09%)
Ssh BaselineDevSec SSH Baseline - InSpec Profile
Stars: ✭ 192 (-40.74%)
LynisLynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Stars: ✭ 9,137 (+2720.06%)
CIS-Ubuntu-20.04-AnsibleAnsible Role to Automate CIS v1.1.0 Ubuntu Linux 18.04 LTS, 20.04 LTS Remediation
Stars: ✭ 150 (-53.7%)
Ssl BaselineDevSec SSL/TLS Baseline - InSpec Profile
Stars: ✭ 56 (-82.72%)
Blue TeamBlue Team Scripts
Stars: ✭ 190 (-41.36%)
Harden.shSlackware hardening script
Stars: ✭ 53 (-83.64%)
nim-contraLightweight Self-Documenting Design by Contract Programming and Security Hardened mode.
Stars: ✭ 46 (-85.8%)
ProwlerProwler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.
Stars: ✭ 4,561 (+1307.72%)
H2th2t (HTTP Hardening Tool) scans a website and suggests security headers to apply
Stars: ✭ 268 (-17.28%)
cloudrasp-log4j2一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-44228) defense.
Stars: ✭ 105 (-67.59%)
Bunkerized Nginx🛡️ Make your web services secure by default !
Stars: ✭ 2,361 (+628.7%)