Trending repositories for topic security-hardening

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-...

Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics re...

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

An evolving how-to guide for securing a Linux server.

Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy

Secure-by-default HTTP servers in Go.

A collection of awesome security hardening guides, tools and other resources

Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Persona...

Runtime Security Solution for your CI/CD Pipeline

My Privacy DNS #Matrix lists for blacklisting

Language-agnostic SLSA provenance generation for Github Actions

Hardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark

USBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are authorized) as well as method of use policies (how a USB device may interact with the ...

Generate sandboxes for C/C++ libraries automatically

Migrate C code to Rust

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-...

Runtime Security Solution for your CI/CD Pipeline

My Privacy DNS #Matrix lists for blacklisting

Language-agnostic SLSA provenance generation for Github Actions

Secure-by-default HTTP servers in Go.

Hardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark

Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy

Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics re...

Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Persona...

USBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are authorized) as well as method of use policies (how a USB device may interact with the ...

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Generate sandboxes for C/C++ libraries automatically

A collection of awesome security hardening guides, tools and other resources

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

An evolving how-to guide for securing a Linux server.

Migrate C code to Rust

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-...

An evolving how-to guide for securing a Linux server.

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics re...

Migrate C code to Rust

Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy

Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Persona...

Secure-by-default HTTP servers in Go.

a collection about Windows 11

A collection of awesome security hardening guides, tools and other resources

The comprehensive guide for online anonymity and OpSec.

USBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are authorized) as well as method of use policies (how a USB device may interact with the ...

Kubernetes RBAC static analysis & visualisation tool

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Language-agnostic SLSA provenance generation for Github Actions

Easily configure macOS security settings from the terminal.

Runtime Security Solution for your CI/CD Pipeline

My Privacy DNS #Matrix lists for blacklisting

SDK providing app protection and threat monitoring for mobile devices. Works with Flutter, React Native, Android and iOS. Shield your app with free RASP. Detect reverse engineering, root (Magisk), jai...

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-...

Runtime Security Solution for your CI/CD Pipeline

My Privacy DNS #Matrix lists for blacklisting

The comprehensive guide for online anonymity and OpSec.

Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Persona...

a collection about Windows 11

Secure-by-default HTTP servers in Go.

Language-agnostic SLSA provenance generation for Github Actions

Kubernetes RBAC static analysis & visualisation tool

Migrate C code to Rust

Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

USBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are authorized) as well as method of use policies (how a USB device may interact with the ...

SDK providing app protection and threat monitoring for mobile devices. Works with Flutter, React Native, Android and iOS. Shield your app with free RASP. Detect reverse engineering, root (Magisk), jai...

Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics re...

Plugins for Wazuh Dashboard

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Easily configure macOS security settings from the terminal.

An evolving how-to guide for securing a Linux server.

Hardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics re...

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

An evolving how-to guide for securing a Linux server.

Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy

Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Persona...

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-...

A collection of awesome security hardening guides, tools and other resources

Migrate C code to Rust

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Librefox: Firefox with privacy enhancements

a collection about Windows 11

Security automation content in SCAP, Bash, Ansible, and other formats

Wazuh - Docker containers

The comprehensive guide for online anonymity and OpSec.

Secure-by-default HTTP servers in Go.

My Privacy DNS #Matrix lists for blacklisting

Language-agnostic SLSA provenance generation for Github Actions

Hardening Ubuntu. Systemd edition.

SDK providing app protection and threat monitoring for mobile devices. Works with Flutter, React Native, Android and iOS. Shield your app with free RASP. Detect reverse engineering, root (Magisk), jai...

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-...

My Privacy DNS #Matrix lists for blacklisting

Ansible playbooks of "How To Secure A Linux Server".

Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Persona...

Runtime Security Solution for your CI/CD Pipeline

The comprehensive guide for online anonymity and OpSec.

Wazuh - Project documentation

Updated for 14.0. A half days worth of work can be done in seconds, with comprehensive logging, togglable secure/performance settings, and backups. Implements a broad, time-tested, thoroughly researc...

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Passively scan for Bluetooth Low Energy devices and attempt to fingerprint them

Wazuh - Docker containers

Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy

SDK providing app protection and threat monitoring for mobile devices. Works with Flutter, React Native, Android and iOS. Shield your app with free RASP. Detect reverse engineering, root (Magisk), jai...

Language-agnostic SLSA provenance generation for Github Actions

A curated list of security resources for a Ruby on Rails application

a collection about Windows 11

Ansible playbook for Linux hardening

SELinux Reference Policy v2

Wazuh - Ansible playbook

Librefox: Firefox with privacy enhancements

Run a security scan on your server and identify common gaps. Get your VPS ready for production.

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics re...

An evolving how-to guide for securing a Linux server.

Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Persona...

Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy

Secure-by-default HTTP servers in Go.

A collection of awesome security hardening guides, tools and other resources

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Migrate C code to Rust

Security automation content in SCAP, Bash, Ansible, and other formats

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-...

Wazuh - Docker containers

Run a security scan on your server and identify common gaps. Get your VPS ready for production.

a collection about Windows 11

SDK providing app protection and threat monitoring for mobile devices. Works with Flutter, React Native, Android and iOS. Shield your app with free RASP. Detect reverse engineering, root (Magisk), jai...

The comprehensive guide for online anonymity and OpSec.

Hardening Ubuntu. Systemd edition.

USBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are authorized) as well as method of use policies (how a USB device may interact with the ...

Language-agnostic SLSA provenance generation for Github Actions

Run a security scan on your server and identify common gaps. Get your VPS ready for production.

Ansible playbooks of "How To Secure A Linux Server".

Secure-by-default HTTP servers in Go.

Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Persona...

My Privacy DNS #Matrix lists for blacklisting

SDK providing app protection and threat monitoring for mobile devices. Works with Flutter, React Native, Android and iOS. Shield your app with free RASP. Detect reverse engineering, root (Magisk), jai...

Welcome Cybersecurity's World. An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Re...

Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in real-...

♻️ Multi-choice Windows optimizer that prioritizes breaking nothing. Works in tandem with Winaero Tweaker.

The comprehensive guide for online anonymity and OpSec.

A collection of awesome security hardening software, libraries, learning tutorials & documents, e-books, best practices, checklists, benchmarks about hardening in Cybersecurity

An ongoing & curated collection of awesome software practices and remediation, libraries and frameworks,payloads and techniques, best guidelines and technical resources about Application Security

Wazuh - Docker containers

Runtime Security Solution for your CI/CD Pipeline

A collection of awesome framework, libraries, learning tutorials, videos, webcasts, technical resources and cool stuff about Security Orchestration, Automation and Response (SOAR).

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

C-friendly API to make path resolution safer on Linux.

Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy

Wazuh - Project documentation

Wazuh - Ansible playbook