There are 50 repositories under hardening topic.
An evolving how-to guide for securing a Linux server.
Guide to using YubiKey for GnuPG and SSH
This guide details creating a secure Linux production system. OpenSCAP (C2S/CIS, STIG).
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL
Hardentools simply reduces the attack surface on Microsoft Windows computers by disabling low-hanging fruit risky features.
HardeningKitty and Windows Hardening settings and configurations
Security automation content in SCAP, Bash, Ansible, and other formats
A curated list of awesome Security Hardening techniques for Windows.
Hardening Ubuntu. Systemd edition.
🔥 A powerful MongoDB auditing and pentesting tool 🔥
Windows 10/11 Guide. Including Windows Security tools, Encryption, Nextcloud, Graphics, Gaming, Virtualization, Windows Subsystem for Linux (WSL 2), Software Apps, and Resources.
Hardened allocator designed for modern systems. It has integration into Android's Bionic libc and can be used externally with musl and glibc as a dynamic library for use on other Linux-based platforms. It will gain more portability / integration over time.
HardeningKitty - Checks and hardens your Windows configuration
Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.
Easily configure macOS security settings from the terminal.
Enhance the security and privacy of your Windows 10 and Windows 11 deployments with our fully optimized, hardened, and debloated script. Adhere to industry best practices and Department of Defense STIG/SRG requirements for optimal performance and security.
a collection about Windows 11
This Ansible role provides numerous security-related ssh configurations, providing all-round base protection.
DevSec Linux Baseline - InSpec Profile
Security module for php7 and php8 - Killing bugclasses and virtual-patching the rest!
Network egress filtering and runtime security for GitHub-hosted and self-hosted runners
Ansible role to apply a security baseline. Systemd edition.
CIS Docker Benchmark - InSpec Profile
Ansible role for Red Hat 7 CIS Baseline
This repository is a collection of resources to prepare for the Certified Kubernetes Security Specialist (CKSS) exam.
This chef cookbook provides numerous security-related configurations, providing all-round base protection.