CIS-Ubuntu-20.04-Ansible
prowler
Our great sponsors
| CIS-Ubuntu-20.04-Ansible | prowler | |
|---|---|---|
| 4 | 24 | |
| 243 | 9,547 | |
| - | 3.4% | |
| 5.0 | 9.8 | |
| 16 days ago | 1 day ago | |
| HTML | Python | |
| GNU General Public License v3.0 only | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
CIS-Ubuntu-20.04-Ansible
- CIS Roles
- Ansible playbook won't run
-
Why won't this ansible script run?!
This is the github repo >>> https://github.com/alivx/CIS-Ubuntu-20.04-Ansible
-
Sending pretty HTML job reports with Ansible
yes it is :) this is the github repo: CIS-Ubuntu-20.04-Ansible
prowler
-
Ask HN: Cloud security auditing for indie-grade projects?
Which cloud provider?
https://github.com/prowler-cloud/prowler is easy to get going with, and gives decent results. It's much stronger at AWS than GCP or Azure.
Steampipe can be a little harder to wrap your head around, but scales really well and has broader support: https://hub.steampipe.io/mods?objectives=security
-
Automating AWS Prowler Scans
Task Role: Select or create a new role that has the necessary permissions. Ensure this role has the three required Prowler policies and an additional custom policy to put objects into the desired S3 bucket.
-
Azure and M365 Secure Config Review
Prowler and ScoutSuite are a good start for cloud stuff.
- AWS Account - Analysis
-
Open source alternative cloud security tool that works like Wiz/Lacework/Aqua
Yes! There are open source cloud security tools! Here are some open source tools out there: steampipe, prowler, cloudquery, and ZeusCloud.
-
CSPM opensource suggestions
If AWS is in use then i would add prowler to the list - https://github.com/prowler-cloud/prowler This is the best open source cspm for aws.
-
Practical way for security assestment in AWS with Prowler
More info you can find it at Prowler Github and Prowler Docs
- AWS Security Scanner
-
Opensource equivalent of Sailpoint
You’re not going to find a shiny enterprise web ui for free but there are tools out there. If you just want to review AWS accounts, you can use prowler https://github.com/prowler-cloud/prowler
-
Automated penetration testing for a cloud infrastructure
Here is a good open source option to get started: https://github.com/prowler-cloud/prowler
What are some alternatives?
ansible-role-hardening - Ansible role to apply a security baseline. Systemd edition.
ScoutSuite - Multi-Cloud Security Auditing Tool
packer-ubuntu20.04 - Packer vsphere-iso builder for Ubuntu-20.04
cloudmapper - CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
terraform-aws-secure-baseline - Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.
steampipe-mod-aws-compliance - Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe and Steampipe.
ara - ARA Records Ansible and makes it easier to understand and troubleshoot.
ansible-role-docker-rootless - Ansible role to install a rootless Docker server
opencspm - Open Cloud Security Posture Management Engine
personal-ansible - Personal Ansible playbooks for home infrastructure to make my life easier
terraform-security-scan - Run a security scan on your terraform with the very nice https://github.com/aquasecurity/tfsec