Trending repositories for topic hardening
🛡️ Open-source and next-generation Web Application Firewall (WAF)
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics re...
An evolving how-to guide for securing a Linux server.
Security automation content in SCAP, Bash, Ansible, and other formats
This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL
Enhance the security and privacy of your Windows 10 and Windows 11 deployments with our fully optimized, hardened, and debloated script. Adhere to industry best practices and Department of Defense STI...
This guide details creating a secure Linux production system. OpenSCAP (C2S/CIS, STIG).
h2t (HTTP Hardening Tool) scans a website and suggests security headers to apply
Security module for php7 and php8 - Killing bugclasses and virtual-patching the rest!
🛡️ Open-source and next-generation Web Application Firewall (WAF)
Security automation content in SCAP, Bash, Ansible, and other formats
h2t (HTTP Hardening Tool) scans a website and suggests security headers to apply
Enhance the security and privacy of your Windows 10 and Windows 11 deployments with our fully optimized, hardened, and debloated script. Adhere to industry best practices and Department of Defense STI...
This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL
Security module for php7 and php8 - Killing bugclasses and virtual-patching the rest!
Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics re...
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
HardeningKitty - Checks and hardens your Windows configuration
An evolving how-to guide for securing a Linux server.
This guide details creating a secure Linux production system. OpenSCAP (C2S/CIS, STIG).
🛡️ Open-source and next-generation Web Application Firewall (WAF)
Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics re...
An evolving how-to guide for securing a Linux server.
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Security automation content in SCAP, Bash, Ansible, and other formats
This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL
Windows 10/11 Guide. Including Windows Security tools, Encryption, Nextcloud, Graphics, Gaming, Virtualization, Windows Subsystem for Linux (WSL 2), Software Apps, and Resources.
h2t (HTTP Hardening Tool) scans a website and suggests security headers to apply
Ansible role to apply a security baseline. Systemd edition.
Network egress filtering and runtime security for GitHub-hosted and self-hosted runners
Enhance the security and privacy of your Windows 10 and Windows 11 deployments with our fully optimized, hardened, and debloated script. Adhere to industry best practices and Department of Defense STI...
Hardened allocator designed for modern systems. It has integration into Android's Bionic libc and can be used externally with musl and glibc as a dynamic library for use on other Linux-based platforms...
Hardentools simply reduces the attack surface on Microsoft Windows computers by disabling low-hanging fruit risky features.
🛡️ Open-source and next-generation Web Application Firewall (WAF)
Ansible playbooks of "How To Secure A Linux Server".
h2t (HTTP Hardening Tool) scans a website and suggests security headers to apply
Security automation content in SCAP, Bash, Ansible, and other formats
Ansible role to apply a security baseline. Systemd edition.
Network egress filtering and runtime security for GitHub-hosted and self-hosted runners
HardeningKitty - Checks and hardens your Windows configuration
Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics re...
This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL
Windows 10/11 Guide. Including Windows Security tools, Encryption, Nextcloud, Graphics, Gaming, Virtualization, Windows Subsystem for Linux (WSL 2), Software Apps, and Resources.
Enhance the security and privacy of your Windows 10 and Windows 11 deployments with our fully optimized, hardened, and debloated script. Adhere to industry best practices and Department of Defense STI...
Hardened allocator designed for modern systems. It has integration into Android's Bionic libc and can be used externally with musl and glibc as a dynamic library for use on other Linux-based platforms...
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
🛡️ Open-source and next-generation Web Application Firewall (WAF)
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics re...
An evolving how-to guide for securing a Linux server.
This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL
Security automation content in SCAP, Bash, Ansible, and other formats
HardeningKitty - Checks and hardens your Windows configuration
Windows 10/11 Guide. Including Windows Security tools, Encryption, Nextcloud, Graphics, Gaming, Virtualization, Windows Subsystem for Linux (WSL 2), Software Apps, and Resources.
Hardened allocator designed for modern systems. It has integration into Android's Bionic libc and can be used externally with musl and glibc as a dynamic library for use on other Linux-based platforms...
Ansible playbooks of "How To Secure A Linux Server".
Enhance the security and privacy of your Windows 10 and Windows 11 deployments with our fully optimized, hardened, and debloated script. Adhere to industry best practices and Department of Defense STI...
Network egress filtering and runtime security for GitHub-hosted and self-hosted runners
Security module for php7 and php8 - Killing bugclasses and virtual-patching the rest!
A curated list of awesome Security Hardening techniques for Windows.
Ansible playbooks of "How To Secure A Linux Server".
🛡️ Open-source and next-generation Web Application Firewall (WAF)
Packer templates to create hardened Ubuntu server images.
Terraform modules for an EC2 Image Builder Pipeline with an Amazon Linux 2 Baseline Container Recipe, which is used to deploy a Docker based Amazon Linux 2 Container Image that has been hardened accor...
HardeningKitty - Checks and hardens your Windows configuration
Security automation content in SCAP, Bash, Ansible, and other formats
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Enhance the security and compliance of your standalone Windows servers with our STIG script, specifically designed to meet DoD STIG/SRG requirements and NSACyber guidance. Achieve ultimate Windows Ser...
Windows 10/11 Guide. Including Windows Security tools, Encryption, Nextcloud, Graphics, Gaming, Virtualization, Windows Subsystem for Linux (WSL 2), Software Apps, and Resources.
🛡️ Open-source and next-generation Web Application Firewall (WAF)
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics re...
An evolving how-to guide for securing a Linux server.
This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL
This guide details creating a secure Linux production system. OpenSCAP (C2S/CIS, STIG).
Windows 10/11 Guide. Including Windows Security tools, Encryption, Nextcloud, Graphics, Gaming, Virtualization, Windows Subsystem for Linux (WSL 2), Software Apps, and Resources.
HardeningKitty - Checks and hardens your Windows configuration
Enhance the security and privacy of your Windows 10 and Windows 11 deployments with our fully optimized, hardened, and debloated script. Adhere to industry best practices and Department of Defense STI...
Security automation content in SCAP, Bash, Ansible, and other formats
Hardened allocator designed for modern systems. It has integration into Android's Bionic libc and can be used externally with musl and glibc as a dynamic library for use on other Linux-based platforms...
Hardentools simply reduces the attack surface on Microsoft Windows computers by disabling low-hanging fruit risky features.
Network egress filtering and runtime security for GitHub-hosted and self-hosted runners
Security module for php7 and php8 - Killing bugclasses and virtual-patching the rest!
Ansible playbooks of "How To Secure A Linux Server".
🛡️ Open-source and next-generation Web Application Firewall (WAF)
♻️ Multi-choice Windows optimizer that improves privacy and security. Works in tandem with Winaero Tweaker.
C# Based GUI for Windows-Optimize-Harden-Debloat
Privacy and security baseline for personal Windows 10 and Windows 11
Network egress filtering and runtime security for GitHub-hosted and self-hosted runners
Create a compliant and secure Windows 10/11 system with our Gold Master image creation tool. Adhere to DoD STIG/SRG Requirements and NSA Cybersecurity guidance for standalone Windows systems with ease...
This is a macOS hardening to read or set security configuration.
Ansible role to install a rootless Docker server
FIM is an Open Source Host-based file integrity monitoring tool that performs file system analysis, file integrity checking, real time alerting and provides Audit daemon data.
Packer templates to create hardened Ubuntu server images.