cis

There are 9 repositories under cis topic.

trimstray / the-practical-linux-hardening-guide
This guide details creating a secure Linux production system. OpenSCAP (C2S/CIS, STIG).
audit centos checklist cis guide hardening linux linux-hardening linux-security manual openscap pci-dss redhat-enterprise-linux security
10317
steampipe
turbot / steampipe
Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.
aws azure cis cloud cnapp cspm devops devsecops etl gcp golang hacktoberfest kubernetes postgresql postgresql-fdw security sqlite steampipe terraform zero-etl
Language:Go 7584
ciso-assistant-community
intuitem / ciso-assistant-community
CISO Assistant is a one-stop-shop for GRC, covering Risk, AppSec, Compliance/Audit Management, Privacy and supporting +100 frameworks worldwide with auto-mapping: NIST CSF, ISO 27001, SOC2, CIS, PCI DSS, NIS2, CMMC, PSPF, GDPR, HIPAA, Essential Eight, NYDFS-500, DORA, NIST AI RMF, 800-53, CyFun, AirCyber, NCSC, ECC, SCF and so much more
compliance grc soc2 gdpr audit iso27001 cis dora risk-management owasp nist privacy bsi cybersecurity isms ebios-rm nis2 security mcp quantification
Language:Python 3350
neargle / re0-kubernetes-sec-archive
:atom: [WIP] 整理过去我和K8s、容器、虚拟化相关的分享 🧐
blackhat hitbsecconf hitb cis cloud-native containers k8s kubernetes
Language:Shell 3118
0x6d69636b / windows_hardening
HardeningKitty and Windows Hardening Settings
windows hardening security windows-10 blueteam defense audit powershell windows-hardening registry checklist compliance bsi cis security-baseline sisyphus stig windows-11 windows-server
Language:PowerShell 2550
debian-cis
ovh / debian-cis
PCI-DSS compliant Debian 11/12 hardening
audit cis debian pci-dss security shell
Language:Shell 942
cli
cloudgraphdev / cli
The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent.
aws gcp azure graphql devops developer-tools devops-tools kubernetes security-tools cspm nist iso cis pci security security-audit cloud tencent
Language:TypeScript 892
aquasecurity / chain-bench
An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.
devsecops software-supply-chain software-supply-chain-security security vulnera go cis golang misconfiguration open-policy-agent security-tools
Language:Go 762
Zeus-Labs / ZeusCloud
Open Source Cloud Security
aws blueteam bugbounty ciem cis cloud cloudsecurity cnapp cspm cwpp devsecops pentesting security security-tools cybersecurity infosec
Language:TypeScript 724
soxoj / counter-osint-guide-ru
Исчерпывающее руководство по приватности и контр-ОСИНТ для Рунета и всего СНГ 🇷🇺
cis counter-osint guide osint privacy runet security
585
ansible-lockdown / RHEL7-CIS
Automated CIS Benchmark Compliance Remediation for RHEL 7 with Ansible
cis rhel7 ansible-role cis-benchmark ansible ansible-playbook automation cis-compliance cis-hardening cis-security configuration-management cybersecurity enterprise-hardening it-compliance linux-hardening secure-baseline secure-configuration system-hardening rhel-7-hardening rhel-security
Language:YAML 485
powerpipe
turbot / powerpipe
Powerpipe: Dashboards for DevOps. Visualize cloud configurations. Assess security posture against a massive library of benchmarks. Build custom dashboards with code.
aws kubernetes security azure cis cloud devops devsecops gcp postgresql sql sqlite terraform cnapp cspm duckdb mysql dashboards hcl hacktoberfest
Language:TypeScript 454
steampipe-mod-aws-compliance
turbot / steampipe-mod-aws-compliance
Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe and Steampipe.
aws security cis sql pci-dss pci compliance cis-benchmark steampipe steampipe-mod hipaa nist-csf rbi hacktoberfest powerpipe powerpipe-mod
Language:Puppet 405
mondoohq / cnquery
open source, cloud-native, graph-based asset inventory
aws azure cis cloud-computing cloud-native gcp kubernetes linux macos security security-as-code unix windows
Language:Go 376
soxoj / counter-osint-guide-en
Comprehensive Counter OSINT and privacy guide (initially for CIS countries)
cis counter-osint guide osint privacy runet security
333
ansible-lockdown / RHEL8-CIS
Automated CIS Benchmark Compliance Remediation for RHEL 8 with Ansible
ansible-role rhel8 cis ansible cis-benchmark ansible-playbook automation cis-compliance cis-hardening cis-security configuration-management cybersecurity enterprise-hardening it-compliance linux-hardening rhel-security secure-baseline secure-configuration system-hardening rhel-8-hardening
Language:YAML 315
finalduty / cis-benchmarks-audit
Simple command line tool to check for compliance against CIS Benchmarks
cis centos7 compliance hardening cis-benchmark audit centos
Language:Python 266
alivx / CIS-Ubuntu-20.04-Ansible
Ansible Role to Automate CIS v1.1.0 Ubuntu Linux 18.04 LTS, 20.04 LTS Remediation
ansible ubuntu2004 cis-benchmark automation cisecurity hardening ubuntu cis security cis-benchmarks playbook-ansible security-tools security-audit cis-aws-benchmark owasp ansible-role
Language:HTML 258
maldevel / blue-team
Blue Team Scripts
benchmark blueteam cis debian hardening linux security servers windows
Language:Shell 252
ansible-lockdown / UBUNTU22-CIS
Automated CIS Benchmark Compliance Remediation for Ubuntu 22 with Ansible
ansible ansible-role cis cis-benchmark ansible-playbook automation cis-compliance cis-hardening cis-security configuration-management cybersecurity enterprise-hardening it-compliance linux-hardening secure-baseline secure-configuration system-hardening ubuntu-security ubuntu-22-hardening ubuntu22
Language:YAML 237
cloudposse / terraform-aws-cloudtrail-cloudwatch-alarms
Terraform module for creating alarms for tracking important changes and occurrences from cloudtrail.
terraform terraform-modules cis security-audit cloudwatch-metrics alarm cloudtrail slack devops
Language:HCL 204
Sneakysecdoggo / Wynis
Audit Windows Security with best Practice
cis security-audit windows
Language:PowerShell 190
ansible-lockdown / UBUNTU20-CIS
Automated CIS Benchmark Compliance Remediation for Ubuntu 20 with Ansible
ansible-role cis ansible cis-benchmark ansible-playbook automation cis-compliance cis-hardening cis-security configuration-management cybersecurity enterprise-hardening it-compliance linux-hardening secure-baseline secure-configuration system-hardening ubuntu-security ubuntu-20-hardening ubuntu20
Language:YAML 182
ansible-lockdown / RHEL9-CIS
Automated CIS Benchmark Compliance Remediation for RHEL 9 with Ansible
rhel9 ansible ansible-playbook ansible-role cis cis-benchmark automation cis-compliance cis-hardening cis-security configuration-management cybersecurity enterprise-hardening it-compliance linux-hardening rhel-security secure-baseline secure-configuration system-hardening rhel-9-hardening
Language:YAML 181
raspbernetes / k8s-security-policies
This repository offers a comprehensive library of security policies designed to enhance the security of Kubernetes cluster configurations. The policies are developed in accordance with the CIS Kubernetes benchmark.
raspbernetes security conftest open-policy-agent cis kubernetes rego-policy rego-files gatekeeper benchmark cis-kubernetes-benchmark kubesec kubernetes-clusters violation
Language:Open Policy Agent 174
ansible-lockdown / Windows-2019-CIS
Automated CIS Benchmark Compliance Remediation for Windows Server 2019 with Ansible
cis windows-server-2019 cis-benchmark ansible ansible-playbook ansible-role automation cis-compliance cis-hardening cis-security cybersecurity enterprise-hardening group-policy it-compliance secure-baseline secure-configuration system-hardening windows-compliance windows-security windows-server-hardening
Language:YAML 145
Hardening-Audit-Tool-AuditTAP
fbprogmbh / Hardening-Audit-Tool-AuditTAP
FBPro Audit Test Automation Package allows you to create compliance reports for your systems. The resulting HTML-reports provide a transparent overview of your devices' security configuration compared to international security standards and hardening guides.
audit benchmark cis compliance hardening-guides iis industry-standards webserver webserver-benchmarking
Language:PowerShell 139
jamf / CIS-for-macOS-Catalina-CP
CIS Benchmarks for macOS Catalina
configuration-profiles security macos jamf cis
Language:Shell 122
ansible-lockdown / UBUNTU24-CIS
Automated CIS Benchmark Compliance Remediation for Ubuntu 24 with Ansible
ansible ansible-playbook ansible-role automation cis cis-benchmark cis-hardening cis-security cybersecurity it-compliance linux-hardening secure-configuration system-hardening ubuntu-security ubuntu24 cis-compliance configuration-management enterprise-hardening secure-baseline ubuntu-24-hardening
Language:YAML 114
OWASP / KubeLight
OWASP Kubernetes security and compliance tool [WIP]
kubernetes cis compliance containers docker kubernetes-security nsa pci-dss sbom security python security-tools owasp cve-scanning devsecops scanner vulnerability-management
Language:Python 107
jamf / CIS-for-macOS-Sierra
cis mac macos macos-sierra security jamf
Language:Shell 103
ansible-lockdown / Windows-2022-CIS
Automated CIS Benchmark Compliance Remediation for Windows Server 2022 with Ansible
cis windows-server-2022 ansible ansible-role ansible-playbook automation cis-benchmark cis-compliance cis-hardening cis-security cybersecurity enterprise-hardening group-policy it-compliance secure-baseline secure-configuration system-hardening windows-compliance windows-security windows-server-hardening
Language:YAML 99
mitre / inspec_tools
A command-line and ruby API of utilities, converters and tools for creating, converting and processing security baseline formats, results and data
inspec stig disa cis mitre-corporation security compliance disa-checklist checklist xccdf json converter mitre-inspec
Language:Ruby 94
florianutz / Ubuntu1604-CIS
Ubuntu CIS Hardening Ansible Role
cis ansible ansible-role ubuntu hardening
Language:Jinja 90
klouddb / klouddbshield
KloudDB Shield is a comprehensive Postgres Security Tool - PII Scanner , CIS Benchmarks , SSL audit , 12+ features .. Supports Postgres, RDS ,Aurora, MySQL
aurora cis cis-benchmark cis-benchmarks pii piiscanner postgres postgresql rds-mysql rds-postgres security
Language:Go 89
rdiers / CentOS7-CIS
Ansible CentOS 7 - CIS Benchmark Hardening Script
ansible ansible-playbook ansible-playbooks ansible-role ansible-roles automation centos centos7 centos7-cis centos7cis cis cis-benchmark rhel7 security-automation security-hardening system-hardening
Language:Shell 89

cis

trimstray / the-practical-linux-hardening-guide

turbot / steampipe

intuitem / ciso-assistant-community

neargle / re0-kubernetes-sec-archive

0x6d69636b / windows_hardening

ovh / debian-cis

cloudgraphdev / cli

aquasecurity / chain-bench

Zeus-Labs / ZeusCloud

soxoj / counter-osint-guide-ru

ansible-lockdown / RHEL7-CIS

turbot / powerpipe

turbot / steampipe-mod-aws-compliance

mondoohq / cnquery

soxoj / counter-osint-guide-en

ansible-lockdown / RHEL8-CIS

finalduty / cis-benchmarks-audit

alivx / CIS-Ubuntu-20.04-Ansible

maldevel / blue-team

ansible-lockdown / UBUNTU22-CIS

cloudposse / terraform-aws-cloudtrail-cloudwatch-alarms

Sneakysecdoggo / Wynis

ansible-lockdown / UBUNTU20-CIS

ansible-lockdown / RHEL9-CIS

raspbernetes / k8s-security-policies

ansible-lockdown / Windows-2019-CIS

fbprogmbh / Hardening-Audit-Tool-AuditTAP

jamf / CIS-for-macOS-Catalina-CP

ansible-lockdown / UBUNTU24-CIS

OWASP / KubeLight

jamf / CIS-for-macOS-Sierra

ansible-lockdown / Windows-2022-CIS

mitre / inspec_tools

florianutz / Ubuntu1604-CIS

klouddb / klouddbshield

rdiers / CentOS7-CIS