apparmor.dFull set of AppArmor profiles (~ 1400 profiles)
Stars: ✭ 32 (-73.77%)
GraphenexAutomated System Hardening Framework
Stars: ✭ 665 (+445.08%)
ProwlerProwler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.
Stars: ✭ 4,561 (+3638.52%)
metabadgerPrevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
Stars: ✭ 123 (+0.82%)
Nginx BaselineDevSec Nginx Baseline - InSpec Profile
Stars: ✭ 71 (-41.8%)
SnuffleupagusSecurity module for php7 and php8 - Killing bugclasses and virtual-patching the rest!
Stars: ✭ 509 (+317.21%)
Puppet Os HardeningThis puppet module provides numerous security-related configurations, providing all-round base protection.
Stars: ✭ 234 (+91.8%)
Harden.shSlackware hardening script
Stars: ✭ 53 (-56.56%)
H2th2t (HTTP Hardening Tool) scans a website and suggests security headers to apply
Stars: ✭ 268 (+119.67%)
Ansible Ssh Hardening This Ansible role provides numerous security-related ssh configurations, providing all-round base protection.
Stars: ✭ 746 (+511.48%)
cloudrasp-log4j2一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-44228) defense.
Stars: ✭ 105 (-13.93%)
Terraform Aws Secure BaselineTerraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.
Stars: ✭ 596 (+388.52%)
LynisLynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Stars: ✭ 9,137 (+7389.34%)
cis benchmarks auditSimple command line tool to check for compliance against CIS Benchmarks
Stars: ✭ 182 (+49.18%)
Hardened mallocHardened allocator designed for modern systems. It has integration into Android's Bionic libc and can be used externally with musl and glibc as a dynamic library for use on other Linux-based platforms. It will gain more portability / integration over time.
Stars: ✭ 472 (+286.89%)
Curl For WinReproducible curl (and OpenSSL) binaries for Windows
Stars: ✭ 352 (+188.52%)
Ssh BaselineDevSec SSH Baseline - InSpec Profile
Stars: ✭ 192 (+57.38%)
HayatHayat is a script for report and analyze Google Cloud Platform resources.
Stars: ✭ 55 (-54.92%)
Aws GateBetter AWS SSM Session manager CLI client
Stars: ✭ 294 (+140.98%)
Sshd configK4YT3X's Hardened OpenSSH Server Configuration
Stars: ✭ 49 (-59.84%)
apache-baselineDevSec Apache Baseline - InSpec Profile
Stars: ✭ 37 (-69.67%)
CIS-Ubuntu-20.04-AnsibleAnsible Role to Automate CIS v1.1.0 Ubuntu Linux 18.04 LTS, 20.04 LTS Remediation
Stars: ✭ 150 (+22.95%)
StrongholdEasily configure macOS security settings from the terminal.
Stars: ✭ 813 (+566.39%)
Ffck🦊 & 🧅 hardening
Stars: ✭ 72 (-40.98%)
cis-dil-benchmarkCIS Distribution Independent Linux Benchmark - InSpec Profile
Stars: ✭ 120 (-1.64%)
HardeningHardening Ubuntu. Systemd edition.
Stars: ✭ 705 (+477.87%)
chef-mysql-hardeningThis chef cookbook provides security configuration for mysql.
Stars: ✭ 23 (-81.15%)
AmdhAndroid Mobile Device Hardening
Stars: ✭ 95 (-22.13%)
nim-contraLightweight Self-Documenting Design by Contract Programming and Security Hardened mode.
Stars: ✭ 46 (-62.3%)
ZeusAWS Auditing & Hardening Tool
Stars: ✭ 630 (+416.39%)
Mongoaudit🔥 A powerful MongoDB auditing and pentesting tool 🔥
Stars: ✭ 1,174 (+862.3%)
ZephyrusAuditing & Hardening script for Kubernetes
Stars: ✭ 45 (-63.11%)
Linux BaselineDevSec Linux Baseline - InSpec Profile
Stars: ✭ 524 (+329.51%)
sigilAWS SSM Session manager client
Stars: ✭ 67 (-45.08%)
Chef Windows HardeningThis chef cookbook provides windows hardening configurations for the DevSec Windows baseline profile.
Stars: ✭ 80 (-34.43%)
JshielderHardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark
Stars: ✭ 483 (+295.9%)
prowlerProwler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.
Stars: ✭ 8,046 (+6495.08%)
Nixarmornixarmor is a linux hardening automation project
Stars: ✭ 62 (-49.18%)
SuhosinSUHOSIN [수호신] for PHP 5.x - The PHP security extension.
Stars: ✭ 466 (+281.97%)
YobichainYobiChain is your very own private blockchain ecosystem preloaded with database, web & FTP servers and D.A.V.E. (Data Authentication & Verification Engine) and S.A.M. (Smart Asset Management).
Stars: ✭ 91 (-25.41%)
ContentSecurity automation content in SCAP, OSCAL, Bash, Ansible, and other formats
Stars: ✭ 1,219 (+899.18%)
Ssl BaselineDevSec SSL/TLS Baseline - InSpec Profile
Stars: ✭ 56 (-54.1%)
Chef Os HardeningThis chef cookbook provides numerous security-related configurations, providing all-round base protection.
Stars: ✭ 386 (+216.39%)