RHEL8-CIS
RHEL7-STIG
RHEL8-CIS | RHEL7-STIG | |
---|---|---|
1 | 2 | |
243 | 282 | |
2.1% | 0.7% | |
8.9 | 8.0 | |
8 days ago | 11 days ago | |
YAML | YAML | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
RHEL8-CIS
-
Please share your default server playbook.
My default role https://github.com/ansible-lockdown/RHEL8-CIS
RHEL7-STIG
-
Adding RHEL 7 STIGs to a playbook
Hello, I am in school and can't seem to get the help I need so I figured it would be worth asking here. I'm trying to add DISA STIGs to a playbook that deploys DigitalOcean droplets, to harden the droplets. I was told to just "copy and paste" them into my playbook from https://github.com/ansible-lockdown/RHEL7-STIG/blob/devel/tasks/fix-cat1.yml which would be fine but my formatting is off and no matter what I've done I'm still getting error messages. I thought it might be worth a shot to ask if anyone had any additional resources to help me better understand how to add these to my playbook.
-
My org will soon be using Ansible, because of me
I have been using this to start the AMI baseline https://github.com/ansible-lockdown/RHEL7-STIG
What are some alternatives?
ansible-role-hardening - Ansible role to apply a security baseline. Systemd edition.
CentOS7-CIS - Ansible CentOS 7 - CIS Benchmark Hardening Script
RHEL7-CIS - Ansible role for Red Hat 7 CIS Baseline
openwrt-config - Ansible playbook library for automated configuring of OpenWrt.
UBUNTU20-CIS - Ansible role for Ubuntu 2004 CIS Baseline
UBUNTU18-CIS - CIS Baseline Ansible Role for Ubuntu 18
prowler - Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
AdGuard-WireGuard-Unbound-Cloudflare - The ultimate self-hosted network security guide ─ Protection | Privacy | Performance for your network 24/7 Accessible anywhere [Moved to: https://github.com/trinib/AdGuard-WireGuard-Unbound-DNScrypt]
RHCA-study-notes - Red Hat Certified Architect personal study notes.
ansible-yaml-snippets - Simple and easy-to-use Ansible code snippets in YAML