ProwlerProwler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.
Stars: ✭ 4,561 (+34984.62%)
prowlerProwler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.
Stars: ✭ 8,046 (+61792.31%)
HardentheworldHarden the world is a community driven project to develop hardening guidelines and checklists for common software and devices.
Stars: ✭ 158 (+1115.38%)
cis benchmarks auditSimple command line tool to check for compliance against CIS Benchmarks
Stars: ✭ 182 (+1300%)
UBUNTU20-CISAnsible role for Ubuntu 2004 CIS Baseline
Stars: ✭ 136 (+946.15%)
CIS-Ubuntu-20.04-AnsibleAnsible Role to Automate CIS v1.1.0 Ubuntu Linux 18.04 LTS, 20.04 LTS Remediation
Stars: ✭ 150 (+1053.85%)
LynisLynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Stars: ✭ 9,137 (+70184.62%)
nim-contraLightweight Self-Documenting Design by Contract Programming and Security Hardened mode.
Stars: ✭ 46 (+253.85%)
Terraform Aws Secure BaselineTerraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.
Stars: ✭ 596 (+4484.62%)
StrongholdEasily configure macOS security settings from the terminal.
Stars: ✭ 813 (+6153.85%)
JshielderHardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark
Stars: ✭ 483 (+3615.38%)
HardeningHardening Ubuntu. Systemd edition.
Stars: ✭ 705 (+5323.08%)
ContentSecurity automation content in SCAP, OSCAL, Bash, Ansible, and other formats
Stars: ✭ 1,219 (+9276.92%)
SnuffleupagusSecurity module for php7 and php8 - Killing bugclasses and virtual-patching the rest!
Stars: ✭ 509 (+3815.38%)
RHEL7-CISAnsible RHEL 7 - CIS Benchmark Hardening Script
Stars: ✭ 28 (+115.38%)
kube-beaconOpen Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification
Stars: ✭ 60 (+361.54%)
lxd-probeOpen Source runtime scanner for Linux containers (LXD / LXC), It performs security audit checks based on CIS Linux containers Benchmark specification
Stars: ✭ 14 (+7.69%)
nerfballWant to see how something like Internet Chemotherapy works without bricking your own vms? This is a jail to reduce the python runtime from doing bad things on the host when running untrusted code. Nerf what you do not need 👾 + 🐛 ⚽ 🏈 🐳
Stars: ✭ 19 (+46.15%)
chef-mysql-hardeningThis chef cookbook provides security configuration for mysql.
Stars: ✭ 23 (+76.92%)
sigilAWS SSM Session manager client
Stars: ✭ 67 (+415.38%)
terraform-otcTerraform integration modules for Open Telekom Cloud
Stars: ✭ 20 (+53.85%)
apparmor.dFull set of AppArmor profiles (~ 1400 profiles)
Stars: ✭ 32 (+146.15%)
vpc-peering-operatorA Kubernetes Operator to manage the lifecycle of AWS VPC Peering Connections
Stars: ✭ 23 (+76.92%)
wazuh-packagesWazuh - Tools for packages creation
Stars: ✭ 54 (+315.38%)
metabadgerPrevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
Stars: ✭ 123 (+846.15%)
RHEL8-STIGAnsible role for Red Hat 8 STIG Baseline
Stars: ✭ 73 (+461.54%)
awesome-rails-securityA curated list of security resources for a Ruby on Rails application
Stars: ✭ 36 (+176.92%)
WhiteBeamWhiteBeam: Transparent endpoint security
Stars: ✭ 74 (+469.23%)
ad-privileged-auditProvides various Windows Server Active Directory (AD) security-focused reports.
Stars: ✭ 42 (+223.08%)
cloudrasp-log4j2一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-44228) defense.
Stars: ✭ 105 (+707.69%)
Terraform Aws VpcTerraform module which creates VPC resources on AWS
Stars: ✭ 2,043 (+15615.38%)
Update-AllUsersQAUpdate-AllUsersQA is a PowerShell script used to change or disable the security questions and answers for local users in a Windows 10 machine.
Stars: ✭ 21 (+61.54%)
ec2-metadata-filterEnhance the security of the EC2 metadata service. (Obsolete thanks to Instance Metadata Service Version 2, see note in README)
Stars: ✭ 32 (+146.15%)
dotsdigital ocean api typescript/javascript wrapper
Stars: ✭ 65 (+400%)
Puppet Os HardeningThis puppet module provides numerous security-related configurations, providing all-round base protection.
Stars: ✭ 234 (+1700%)
matrixmirror of https://mypdns.org/my-privacy-dns/matrix as it is obviously no longer safe to do Girhub nor have we no longer any trust in them. See https://mypdns.org/my-privacy-dns/porn-records/-/issues/1347
Stars: ✭ 32 (+146.15%)
serverless-vpc-discoveryServerless plugin for discovering VPC / Subnet / Security Group configuration by name.
Stars: ✭ 35 (+169.23%)
Ssh BaselineDevSec SSH Baseline - InSpec Profile
Stars: ✭ 192 (+1376.92%)