Trending repositories for topic security-hardening

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-...

Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics re...

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

An evolving how-to guide for securing a Linux server.

Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy

A collection of awesome security hardening guides, tools and other resources

Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Persona...

Migrate C code to Rust

Secure-by-default HTTP servers in Go.

USBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are authorized) as well as method of use policies (how a USB device may interact with the ...

Runtime Security Solution for your CI/CD Pipeline

My Privacy DNS #Matrix lists for blacklisting

Language-agnostic SLSA provenance generation for Github Actions

Hardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark

Generate sandboxes for C/C++ libraries automatically

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-...

Runtime Security Solution for your CI/CD Pipeline

My Privacy DNS #Matrix lists for blacklisting

USBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are authorized) as well as method of use policies (how a USB device may interact with the ...

Language-agnostic SLSA provenance generation for Github Actions

Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Persona...

Secure-by-default HTTP servers in Go.

Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics re...

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy

Hardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark

A collection of awesome security hardening guides, tools and other resources

Migrate C code to Rust

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Generate sandboxes for C/C++ libraries automatically

An evolving how-to guide for securing a Linux server.

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-...

Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics re...

An evolving how-to guide for securing a Linux server.

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Migrate C code to Rust

Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy

Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Persona...

A collection of awesome security hardening guides, tools and other resources

Secure-by-default HTTP servers in Go.

a collection about Windows 11

USBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are authorized) as well as method of use policies (how a USB device may interact with the ...

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

The comprehensive guide for online anonymity and OpSec.

Kubernetes RBAC static analysis & visualisation tool

Easily configure macOS security settings from the terminal.

Language-agnostic SLSA provenance generation for Github Actions

Runtime Security Solution for your CI/CD Pipeline

My Privacy DNS #Matrix lists for blacklisting

SDK providing app protection and threat monitoring for mobile devices. Works with Flutter, React Native, Android and iOS. Shield your app with free RASP. Detect reverse engineering, root (Magisk), jai...

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-...

The comprehensive guide for online anonymity and OpSec.

Runtime Security Solution for your CI/CD Pipeline

My Privacy DNS #Matrix lists for blacklisting

Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Persona...

a collection about Windows 11

USBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are authorized) as well as method of use policies (how a USB device may interact with the ...

Migrate C code to Rust

Secure-by-default HTTP servers in Go.

Plugins for Wazuh Dashboard

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Language-agnostic SLSA provenance generation for Github Actions

Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy

Kubernetes RBAC static analysis & visualisation tool

Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics re...

Easily configure macOS security settings from the terminal.

SDK providing app protection and threat monitoring for mobile devices. Works with Flutter, React Native, Android and iOS. Shield your app with free RASP. Detect reverse engineering, root (Magisk), jai...

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

An evolving how-to guide for securing a Linux server.

Hardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics re...

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

An evolving how-to guide for securing a Linux server.

Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy

Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Persona...

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-...

A collection of awesome security hardening guides, tools and other resources

Migrate C code to Rust

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Librefox: Firefox with privacy enhancements

a collection about Windows 11

Security automation content in SCAP, Bash, Ansible, and other formats

Wazuh - Docker containers

The comprehensive guide for online anonymity and OpSec.

Hardening Ubuntu. Systemd edition.

Secure-by-default HTTP servers in Go.

My Privacy DNS #Matrix lists for blacklisting

Language-agnostic SLSA provenance generation for Github Actions

SDK providing app protection and threat monitoring for mobile devices. Works with Flutter, React Native, Android and iOS. Shield your app with free RASP. Detect reverse engineering, root (Magisk), jai...

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-...

My Privacy DNS #Matrix lists for blacklisting

Ansible playbooks of "How To Secure A Linux Server".

Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Persona...

Runtime Security Solution for your CI/CD Pipeline

The comprehensive guide for online anonymity and OpSec.

Wazuh - Project documentation

Updated for 14.0. A half days worth of work can be done in seconds, with comprehensive logging, togglable secure/performance settings, and backups. Implements a broad, time-tested, thoroughly researc...

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Passively scan for Bluetooth Low Energy devices and attempt to fingerprint them

Wazuh - Docker containers

Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy

SELinux Reference Policy v2

SDK providing app protection and threat monitoring for mobile devices. Works with Flutter, React Native, Android and iOS. Shield your app with free RASP. Detect reverse engineering, root (Magisk), jai...

Language-agnostic SLSA provenance generation for Github Actions

A curated list of security resources for a Ruby on Rails application

a collection about Windows 11

Ansible playbook for Linux hardening

Wazuh - Ansible playbook

Librefox: Firefox with privacy enhancements

Run a security scan on your server and identify common gaps. Get your VPS ready for production.

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics re...

An evolving how-to guide for securing a Linux server.

Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Persona...

Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy

Secure-by-default HTTP servers in Go.

A collection of awesome security hardening guides, tools and other resources

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Migrate C code to Rust

Security automation content in SCAP, Bash, Ansible, and other formats

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-...

Wazuh - Docker containers

Run a security scan on your server and identify common gaps. Get your VPS ready for production.

a collection about Windows 11

SDK providing app protection and threat monitoring for mobile devices. Works with Flutter, React Native, Android and iOS. Shield your app with free RASP. Detect reverse engineering, root (Magisk), jai...

The comprehensive guide for online anonymity and OpSec.

Hardening Ubuntu. Systemd edition.

USBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are authorized) as well as method of use policies (how a USB device may interact with the ...

Language-agnostic SLSA provenance generation for Github Actions

Run a security scan on your server and identify common gaps. Get your VPS ready for production.

Ansible playbooks of "How To Secure A Linux Server".

Secure-by-default HTTP servers in Go.

Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Persona...

My Privacy DNS #Matrix lists for blacklisting

Welcome Cybersecurity's World. An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Re...

SDK providing app protection and threat monitoring for mobile devices. Works with Flutter, React Native, Android and iOS. Shield your app with free RASP. Detect reverse engineering, root (Magisk), jai...

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-...

♻️ Multi-choice Windows optimizer that prioritizes breaking nothing. Works in tandem with Winaero Tweaker.

The comprehensive guide for online anonymity and OpSec.

A collection of awesome security hardening software, libraries, learning tutorials & documents, e-books, best practices, checklists, benchmarks about hardening in Cybersecurity

An ongoing & curated collection of awesome software practices and remediation, libraries and frameworks,payloads and techniques, best guidelines and technical resources about Application Security

Wazuh - Docker containers

Runtime Security Solution for your CI/CD Pipeline

A collection of awesome framework, libraries, learning tutorials, videos, webcasts, technical resources and cool stuff about Security Orchestration, Automation and Response (SOAR).

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

C-friendly API to make path resolution safer on Linux.

Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy

Wazuh - Project documentation

Wazuh - Ansible playbook