An evolving how-to guide for securing a Linux server.
-
Updated
Jan 21, 2020
#
security-hardening
Here are 228 public repositories matching this topic...
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
go
linux
golang
freebsd
security
security-audit
administrator
cybersecurity
security-vulnerability
vulnerabilities
security-hardening
vulnerability-detection
vulnerability-management
vulnerability-scanners
security-scanner
vulnerability-assessment
vuls
security-automation
security-tools
vulnerability-scanner
-
Updated
Sep 23, 2020 - Go
Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains all CIS controls listed here https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf and more than 100 additional checks that help on GDPR, HIPAA and other security requirements.
aws
security
cis
security-audit
cloud
aws-cli
assessment
forensics
compliance
hardening
security-hardening
hipaa
cloudtrail
gdpr
security-tools
cis-benchmark
aws-auditing
prowler
well-architected
-
Updated
Oct 2, 2020 - Shell
user.js -- Firefox configuration hardening
-
Updated
Sep 19, 2020 - JavaScript
Wazuh - The Open Source Security Platform
security
elasticsearch
log-analysis
monitoring
incident-response
ids
intrusion-detection
pci-dss
compliance
security-hardening
loganalyzer
vulnerability-detection
ossec
openscap
wazuh
policy-monitoring
security-awareness
file-integrity-management
-
Updated
Oct 2, 2020 - C
Migrate C code to Rust
-
Updated
Sep 22, 2020 - Rust
Librefox: Firefox with privacy enhancements
firefox
security
privacy
browser
addon
freedom
mozilla
android-application
free-software
libre
mac-app
android-app
security-hardening
linux-app
mozilla-firefox
windows-app
anti-fingerprinting
libresoftware
libre-software
extensions-firewall
-
Updated
Sep 29, 2019 - JavaScript
rails
checklist
security
security-audit
ruby-on-rails
security-hardening
rails-security
rails-security-checklist
-
Updated
Jul 26, 2020 - Ruby
Generates sandboxes for C/C++ libraries automatically
-
Updated
Oct 2, 2020 - C++
Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats
security
ansible
cybersecurity
pci-dss
application-security
compliance
scap
hardening
security-hardening
xccdf
oval
cpe
information-security
cce
usgcb
ospp
stig
security-automation
security-tools
security-profile
-
Updated
Oct 2, 2020 - Python
Simple Golang HTTPS/TLS Examples
go
golang
security
security-audit
awesome
tools
openssl
https
http2
secure
httpclient
libressl
security-hardening
https-server
security-scanner
security-tools
-
Updated
Apr 30, 2019
2
alichtman
commented
Oct 24, 2018
https://github.com/0xmachos/mOSL is a good replacement until this is updated.
Basically, we should remove all settings that are no longer relevant, and add ones that are newly added.
USBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are authorized) as well as method of use policies (how a USB device may interact with the system)
-
Updated
Sep 29, 2020 - C++
Hardening Ubuntu. Systemd edition.
shell
security
ubuntu
systemd
hardening
ubuntu-server
security-hardening
information-security
security-automation
security-tools
security-compliance
-
Updated
Sep 29, 2020 - Shell
A collection of awesome security hardening guides, tools and other resources
-
Updated
Aug 27, 2020
Security Knowledge Framework (SKF) Python Flask / Angular project
security
security-audit
secure-by-default
security-hardening
security-training
secure-coding
security-framework
security-standards
owasp-skf
security-knowledge
security-requirements
-
Updated
Oct 2, 2020 - HTML
Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.
aws
security
devops
terraform
hardening
security-hardening
terraform-modules
security-tools
cis-benchmark
aws-auditing
-
Updated
Sep 24, 2020 - HCL
Hardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark
linux
iptables
centos7
ubuntu1604
hardening
ubuntu-server
security-hardening
modsecurity
linux-server
lamp-stack
system-hardening
cis-benchmark
ubuntu1804
hardening-steps
lamp-deployer
lemp-deployer
-
Updated
Sep 21, 2020 - PHP
Scripts built from our Guide to User Data Security
-
Updated
Oct 21, 2018 - Shell
Ansible playbook roles for security
-
Updated
Sep 7, 2018
-
Updated
Jul 18, 2020 - JavaScript
jvoisin
commented
Oct 1, 2019
It would be great to be able to get a complete stacktrace along with the request dump when a rule is triggered.
Quickly secure UNIX/Linux systems
-
Updated
Mar 9, 2020 - Shell
Ansible role for Red Hat 7 CIS Baseline
-
Updated
Oct 2, 2020 - Python
Secure-by-default HTTP servers in Go.
-
Updated
Sep 29, 2020 - Go
Wazuh - Ruleset
security
elasticsearch
log-analysis
monitoring
incident-response
ids
intrusion-detection
pci-dss
compliance
security-hardening
loganalyzer
vulnerability-detection
ossec
openscap
wazuh
policy-monitoring
security-awareness
file-integrity-management
-
Updated
Oct 1, 2020 - Python
Look-Ahead Java Deserialization Library
-
Updated
Jan 7, 2020 - Java
Kubernetes RBAC static Analysis & visualisation tool
kubernetes
security
analysis
static-analysis
visualisation
rbac
k8s
role-based-access-control
security-hardening
security-scanner
security-tools
rbac-management
rbac-configuration
redisgraph
rbac-roles
-
Updated
Sep 28, 2020 - Ruby
jamescassell
commented
Jan 28, 2020
currently, we hard-code the default RHEL NTP servers.
Improve this page
Add a description, image, and links to the security-hardening topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the security-hardening topic, visit your repo's landing page and select "manage topics."
It would be nice if lynis would gather (and report in the portal/reports) information about user-accounts: