HardeningKitty
scratch-www
HardeningKitty | scratch-www | |
---|---|---|
14 | 804 | |
1,149 | 1,559 | |
3.8% | 0.6% | |
2.9 | 9.9 | |
about 2 months ago | 1 day ago | |
PowerShell | JavaScript | |
MIT License | BSD 3-clause "New" or "Revised" License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
HardeningKitty
-
If You Had To Create All IT Policies From Scratch
Also Hardening-Kitty. https://github.com/scipag/HardeningKitty
- CIS benchmark Windows Server 2022
- Windows OS Security
-
Creating a jump host in 2023
Critically, harden the OS. Like, more than you think you need to. Way more. Consider the jump host capability as a core component of each system/environment/platform/application it's used to access/manage and assess value and risk with all those business processes/functions in mind even though you're using one jump host for each of those use cases because, inevitably, the same template/container/configuration/script will be reused so any misconfigurations will replicate. If you need a Windows OS, consider hardening kitty as it offers a locally executable option for both hardening and auditing. If you need to met regulatory requirements (HIPAA, CMMC, FISMA, PCI, etc.), consider OpenSCAP or whatever paid solution you use for agent-based vuln scans (avoid less intensive solutions that only run unauthenticated scans or network-based audits, they tend to avoid non-CVE vulns that exist in the configuration). If you need to rely on open source endpoint security solutions like Wazuh make sure they integrate nicely with SIEM, SOAR, and remote management. Wherever possible, use DevOps-friendly solutions for configuration management (think Ansible and Terraform vice Github Actions :) ) and remember that, if you're responding to an incident, you're going to want to suspend all of your jump boxes, retain any storage and their full memory state, and spin up verifiably clean jump boxes so you have confidence in your connections into the environment. This is the most commonly overlooked need (most orgs seem to be aware of their privilege sprawl issue) and it has a MASSIVE impact on your ability to quickly begin effective investigation and response efforts in the event of an incident (most orgs do NOT seem to be aware of this and it costs them time and meaningful information during incidents).
- Active Directory Security Tools
- Help!! Is there a Scanning tool that helps scan the whole Windows Build Image?
-
Is Windows Defender for Business any good?
Agree. Harden your endpoints (if unsure where to start consider hardening kitty, https://github.com/scipag/HardeningKitty) and harden Defender (https://0ut3r.space/2022/03/06/windows-defender/). Add Sysmon with a good config (https://github.com/olafhartong/sysmon-modular) and you've reached a good starting point.
-
Ciphers... Edge... I wanna AES256 SHA384 only
I use a tool called Hardening-Kitty https://github.com/scipag/HardeningKitty , which has recommended policy lists from a variety of organizations. I check my computer with all of them. They don't all agree, of course, so I kind of pick and choose a little. But the lists have helped me find things I had no idea where they were.
- PowerShell script to confirm server configuration
-
There’s a GitHub repo for testing every single Windows security / privilege mechanism. I’ve lost the book mark, anyone know it?
A related tool that I found somewhere on reddit recently: HardeningKitty
scratch-www
-
Ask HN: Modern Day Equivalent to HyperCard?
LiveCode is about the closest literal logical successor to HyperCard.
https://en.wikipedia.org/wiki/LiveCode?wprov=sfti1
That said, I think Scratch is a better learning environment these days and you can develop workable apps in the style of HyperCard. There are plenty of tutorials, documentation, and examples to work from.
https://scratch.mit.edu
- Scratch is the largest free coding community for kids
-
Screen-free coding for children: the xylophone maze
and https://codecombat.com, which has been around for a while now.
I think this paradigm (navigating a character using "move" function invocations) is good but kind of exhausts its usefulness after a while. I question whether my daughter learns coding this way or just is playing a turn based top down platformer. The most code like thing is when you use 'loops' to have characters repeat sequences of moves. I think when kids grok these things these apps become just types of glofiried education flavoured video games. There are a lot of things in kodable for instance that I feel are just basic web games with coding terms slapped on it.
https://scratch.mit.edu/ is more like 'programming' imo, even at the level of the objective -- having a blank canvas to create something. It seems a little advanced for my kids right now though.
-
Ask HN: Yo wants to build a game, I'm lost. What can I do?
+1 Scratch! My son started with it, then expanded into Roblox/Lua.
Children can download other people's games and experiment there. Scratch also has pre-made art, sounds, music.
https://scratch.mit.edu/
-
Ask HN: Platform for kids to learn how to code
Scratch.mit.edu is a highly-recommended place to start [1] https://scratch.mit.edu/
> Scratch is the world’s largest coding community for children and a coding language with a simple visual interface that allows young people to create digital stories, games, and animations. Scratch is designed, developed, and moderated by the Scratch Foundation, a nonprofit organization. [2]
1: https://scratch.mit.edu/
-
Eligiendo un computador para desarrollo
https://scratch.mit.edu/ (Scratch version 2)
-
i swear to god if i keep seeing projects abt these 4 franchises every single day i'm gonna break someone's kneecaps
Someone who uses scratch.mit.edu (like me)
-
How to learn coding without a degree
Now that I think of it, I did start game development on scratch before going right into java (because of minecraft).
- Copii si programarea
- Teen school project
What are some alternatives?
windows_hardening - HardeningKitty and Windows Hardening settings and configurations
Node RED - Low-code programming for event-driven applications
AutomaticMaintenance - Helps IT engineers to establish a continuous update process in large intertangled infrastructures.
GDevelop - :video_game: Open-source, cross-platform game engine designed to be used by everyone.
SchannelConfiguration - Configure SChannel Security Settings via Group Policy
blockly - The web-based visual programming editor.
hardentools - Hardentools simply reduces the attack surface on Microsoft Windows computers by disabling low-hanging fruit risky features.
Godot - Godot Engine – Multi-platform 2D and 3D game engine
PowerZure - PowerShell framework to assess Azure security
processing - Source code for the Processing Core and Development Environment (PDE)
Audit-Test-Automation - The Audit Test Automation Package gives you the ability to get an overview about the compliance status of several systems. You can easily create HTML-reports and have a transparent overview over compliance and non-compliance of explicit setttings and configurations in comparison to industry standards and hardening guides.
stencyl-engine - Create Flash, HTML5, iOS, Android, and desktop games with no code with Stencyl. This is the source to Stencyl's Haxe-based engine.