74 Open source projects that are alternatives of or similar to Sysctl

DevSec Apache Baseline - InSpec Profile

This chef cookbook provides security configuration for mysql.

Hardening Ubuntu. Systemd edition.

CIS Docker Benchmark - InSpec Profile

AWS SSM Session manager client

K4YT3X's Hardened OpenSSH Server Configuration

A terraform module to create a VPC with secure default configurations.

🦊 & 🧅 hardening

First Steps in Ubuntu (Server) / Hardening and Config With Docker

DevSec Linux Baseline - InSpec Profile

Reproducible curl (and OpenSSL) binaries for Windows

Prowler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.

Hayat is a script for report and analyze Google Cloud Platform resources.

Better AWS SSM Session manager CLI client

My Windows 10 x64 security hardening guide

Ansible Role to Automate CIS v1.1.0 Ubuntu Linux 18.04 LTS, 20.04 LTS Remediation

Easily configure macOS security settings from the terminal.

CIS Distribution Independent Linux Benchmark - InSpec Profile

Ubuntu CIS Hardening Ansible Role

Lightweight Self-Documenting Design by Contract Programming and Security Hardened mode.

AWS Auditing & Hardening Tool

Auditing & Hardening script for Kubernetes

🔥 A powerful MongoDB auditing and pentesting tool 🔥

dev-sec.io/

Hardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark

This chef cookbook provides numerous security-related configurations, providing all-round base protection.

This puppet module provides numerous security-related configurations, providing all-round base protection.

DevSec SSL/TLS Baseline - InSpec Profile

This repository is a collection of resources to prepare for the Certified Kubernetes Security Specialist (CKSS) exam.

Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.

Slackware hardening script

h2t (HTTP Hardening Tool) scans a website and suggests security headers to apply

YobiChain is your very own private blockchain ecosystem preloaded with database, web & FTP servers and D.A.V.E. (Data Authentication & Verification Engine) and S.A.M. (Smart Asset Management).

⛔ DEPRECATED: A secure jenkins installation

Smoking Linux Every Day!

This chef cookbook provides secure nginx configurations.

This guide details creating a secure Linux production system. OpenSCAP (C2S/CIS, STIG).

My Windows 11 x64 security hardening guide

This Ansible role provides numerous security-related ssh configurations, providing all-round base protection.

Auditing Script based on CIS-BENCHMARK CENTOS 8

Windows 10 hardening guide without gimmicks

Full set of AppArmor profiles (~ 1400 profiles)

Automated System Hardening Framework

一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-44228) defense.

DevSec Nginx Baseline - InSpec Profile

DevSec PostgreSQL Baseline - InSpec Profile

Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.

This chef cookbook provides security configuration for PostgreSQL.

A curated list of awesome Security Hardening techniques for Windows.

Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).

Security module for php7 and php8 - Killing bugclasses and virtual-patching the rest!

Simple command line tool to check for compliance against CIS Benchmarks

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Hardened allocator designed for modern systems. It has integration into Android's Bionic libc and can be used externally with musl and glibc as a dynamic library for use on other Linux-based platforms. It will gain more portability / integration over time.

Suhosin Extension for PHP 7.x

Android Mobile Device Hardening

This chef cookbook provides windows hardening configurations for the DevSec Windows baseline profile.

nixarmor is a linux hardening automation project

SUHOSIN [수호신] for PHP 5.x - The PHP security extension.