An evolving how-to guide for securing a Linux server.
-
Updated
Jan 21, 2020
#
security-hardening
Here are 226 public repositories matching this topic...
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
go
linux
golang
freebsd
security
security-audit
administrator
cybersecurity
security-vulnerability
vulnerabilities
security-hardening
vulnerability-detection
vulnerability-management
vulnerability-scanners
security-scanner
vulnerability-assessment
vuls
security-automation
security-tools
vulnerability-scanner
-
Updated
Sep 11, 2020 - Go
Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains all CIS controls listed here https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf and more than 100 additional checks that help on GDPR, HIPAA and other security requirements.
aws
security
cis
security-audit
cloud
aws-cli
assessment
forensics
compliance
hardening
security-hardening
hipaa
cloudtrail
gdpr
security-tools
cis-benchmark
aws-auditing
prowler
well-architected
-
Updated
Sep 7, 2020 - Shell
user.js -- Firefox configuration hardening
-
Updated
Sep 1, 2020 - JavaScript
Wazuh - The Open Source Security Platform
security
elasticsearch
log-analysis
monitoring
incident-response
ids
intrusion-detection
pci-dss
compliance
security-hardening
loganalyzer
vulnerability-detection
ossec
openscap
wazuh
policy-monitoring
security-awareness
file-integrity-management
-
Updated
Sep 14, 2020 - C
Migrate C code to Rust
-
Updated
Sep 14, 2020 - Rust
Librefox: Firefox with privacy enhancements
firefox
security
privacy
browser
addon
freedom
mozilla
android-application
free-software
libre
mac-app
android-app
security-hardening
linux-app
mozilla-firefox
windows-app
anti-fingerprinting
libresoftware
libre-software
extensions-firewall
-
Updated
Sep 29, 2019 - JavaScript
rails
checklist
security
security-audit
ruby-on-rails
security-hardening
rails-security
rails-security-checklist
-
Updated
Jul 26, 2020 - Ruby
Generates sandboxes for C/C++ libraries automatically
-
Updated
Sep 14, 2020 - C++
Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats
security
ansible
cybersecurity
pci-dss
application-security
compliance
scap
hardening
security-hardening
xccdf
oval
cpe
information-security
cce
usgcb
ospp
stig
security-automation
security-tools
security-profile
-
Updated
Sep 14, 2020 - Python
Simple Golang HTTPS/TLS Examples
go
golang
security
security-audit
awesome
tools
openssl
https
http2
secure
httpclient
libressl
security-hardening
https-server
security-scanner
security-tools
-
Updated
Apr 30, 2019
2
alichtman
commented
Oct 24, 2018
https://github.com/0xmachos/mOSL is a good replacement until this is updated.
Basically, we should remove all settings that are no longer relevant, and add ones that are newly added.
USBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are authorized) as well as method of use policies (how a USB device may interact with the system)
-
Updated
Sep 11, 2020 - C++
Hardening Ubuntu. Systemd edition.
shell
security
ubuntu
systemd
hardening
ubuntu-server
security-hardening
information-security
security-automation
security-tools
security-compliance
-
Updated
Sep 14, 2020 - Shell
Security Knowledge Framework (SKF) Python Flask / Angular project
security
security-audit
secure-by-default
security-hardening
security-training
secure-coding
security-framework
security-standards
owasp-skf
security-knowledge
security-requirements
-
Updated
Sep 14, 2020 - HTML
A collection of awesome security hardening guides, tools and other resources
-
Updated
Aug 27, 2020
Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations.
aws
security
devops
terraform
hardening
security-hardening
terraform-modules
security-tools
cis-benchmark
aws-auditing
-
Updated
Sep 9, 2020 - HCL
Scripts built from our Guide to User Data Security
-
Updated
Oct 21, 2018 - Shell
Hardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark
linux
iptables
centos7
ubuntu1604
hardening
ubuntu-server
security-hardening
modsecurity
linux-server
lamp-stack
system-hardening
cis-benchmark
ubuntu1804
hardening-steps
lamp-deployer
lemp-deployer
-
Updated
Jul 23, 2020 - PHP
Ansible playbook roles for security
-
Updated
Sep 7, 2018
jvoisin
commented
Oct 1, 2019
It would be great to be able to get a complete stacktrace along with the request dump when a rule is triggered.
-
Updated
Jul 18, 2020 - JavaScript
Quickly secure UNIX/Linux systems
-
Updated
Mar 9, 2020 - Shell
Ansible role for Red Hat 7 CIS Baseline
-
Updated
Sep 9, 2020 - Python
Secure-by-default HTTP servers in Go.
-
Updated
Sep 14, 2020 - Go
Wazuh - Ruleset
security
elasticsearch
log-analysis
monitoring
incident-response
ids
intrusion-detection
pci-dss
compliance
security-hardening
loganalyzer
vulnerability-detection
ossec
openscap
wazuh
policy-monitoring
security-awareness
file-integrity-management
-
Updated
Sep 7, 2020 - Python
Look-Ahead Java Deserialization Library
-
Updated
Jan 7, 2020 - Java
Kubernetes RBAC static Analysis & visualisation tool
kubernetes
security
analysis
static-analysis
visualisation
rbac
k8s
role-based-access-control
security-hardening
security-scanner
security-tools
rbac-management
rbac-configuration
redisgraph
rbac-roles
-
Updated
Sep 10, 2020 - Ruby
jamescassell
commented
Jan 28, 2020
currently, we hard-code the default RHEL NTP servers.
Improve this page
Add a description, image, and links to the security-hardening topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the security-hardening topic, visit your repo's landing page and select "manage topics."
It would be nice if lynis would gather (and report in the portal/reports) information about user-accounts: