159 Open source projects that are alternatives of or similar to terraform-aws-secure-vpc

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.

Prowler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.

Harden the world is a community driven project to develop hardening guidelines and checklists for common software and devices.

Simple command line tool to check for compliance against CIS Benchmarks

Ansible role for Ubuntu 2004 CIS Baseline

Ansible Role to Automate CIS v1.1.0 Ubuntu Linux 18.04 LTS, 20.04 LTS Remediation

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Lightweight Self-Documenting Design by Contract Programming and Security Hardened mode.

Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.

Easily configure macOS security settings from the terminal.

Hardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark

Ansible role to apply a security baseline. Systemd edition.

Hardening Ubuntu. Systemd edition.

My Windows 10 x64 security hardening guide

Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats

My Windows 11 x64 security hardening guide

Auditing Script based on CIS-BENCHMARK CENTOS 8

Windows 10 hardening guide without gimmicks

Security module for php7 and php8 - Killing bugclasses and virtual-patching the rest!

An evolving how-to guide for securing a Linux server.

Ansible RHEL 7 - CIS Benchmark Hardening Script

Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification

Open Source runtime scanner for Linux containers (LXD / LXC), It performs security audit checks based on CIS Linux containers Benchmark specification

Want to see how something like Internet Chemotherapy works without bricking your own vms? This is a jail to reduce the python runtime from doing bad things on the host when running untrusted code. Nerf what you do not need 👾 + 🐛 ⚽ 🏈 🐳

🔒 SecureHeaders wrapper for Laravel.

This chef cookbook provides security configuration for mysql.

Headless Wordpress - AWS - Easy Setup

AWS SSM Session manager client

This chef cookbook provides security configuration for PostgreSQL.

Wazuh - Ansible playbook

Ansible role for the Windows 2012 Member Server STIG

Terraform integration modules for Open Telekom Cloud

Full set of AppArmor profiles (~ 1400 profiles)

A Kubernetes Operator to manage the lifecycle of AWS VPC Peering Connections

Wazuh - Tools for packages creation

Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).

dev-sec.io/

Provide a fixed IP (ElasticIP) to your AWS Lambdas

Prevents XSS by figuring out how to escape untrusted values in templates

AWS Study Blog

Pre-configured response & remediation playbooks for AWS Security Hub

Ansible role for Red Hat 8 STIG Baseline

A curated list of security resources for a Ruby on Rails application

WhiteBeam: Transparent endpoint security

Provides various Windows Server Active Directory (AD) security-focused reports.

一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-44228) defense.

A serverless framework example project that uses API Gateway, ElastiCache, and RDS PostgreSQL.

First Steps in Ubuntu (Server) / Hardening and Config With Docker

Terraform module which creates VPC resources on AWS

Cloudformation template to set up AWS Transit Gateway with Multi Accounts in Organizations

Update-AllUsersQA is a PowerShell script used to change or disable the security questions and answers for local users in a Windows 10 machine.

Enhance the security of the EC2 metadata service. (Obsolete thanks to Instance Metadata Service Version 2, see note in README)

Note to pass the AWS Solutions Architect Associate Exam

Terraform module for building base networking in AWS

digital ocean api typescript/javascript wrapper

This puppet module provides numerous security-related configurations, providing all-round base protection.

Baseline Security Configuration For MacOS

mirror of https://mypdns.org/my-privacy-dns/matrix as it is obviously no longer safe to do Girhub nor have we no longer any trust in them. See https://mypdns.org/my-privacy-dns/porn-records/-/issues/1347

Serverless plugin for discovering VPC / Subnet / Security Group configuration by name.

DevSec SSH Baseline - InSpec Profile