debian-cis
hardening
Our great sponsors
debian-cis | hardening | |
---|---|---|
3 | 5 | |
663 | 1,308 | |
7.3% | - | |
7.3 | 8.9 | |
17 days ago | 4 days ago | |
Shell | Shell | |
GNU General Public License v3.0 or later | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
debian-cis
- Q: How many have actually secured thier server?
-
Any tool to check the security of my server?
I normally use debian-cis: https://github.com/ovh/debian-cis
- Basic Server Hardening Steps
hardening
-
Security Harden Ubuntu 22.04
Thanks for the link. I’m looking into it now. I also am testing out konstrukoid/hardening on GitHub
-
Any tool to check the security of my server?
There is also: https://github.com/konstruktoid/hardening
-
Industry Standard Linux Hardening Script [Ubuntu Server]
Are there any Linux(Ubuntu Server in my case) hardening scripts that abides to any well known industry standards. I can only find some scripts on Github like this one - https://github.com/konstruktoid/hardening
- Basic Server Hardening Steps
- Advice on locking down / securing servers?
What are some alternatives?
ansible-collection-hardening - This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL
Android-PIN-Bruteforce - Unlock an Android phone (or device) by bruteforcing the lockscreen PIN. Turn your Kali Nethunter phone into a bruteforce PIN cracker for Android devices! (no root, no adb)
lynis - Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
ansible-role-hardening - Ansible role to apply a security baseline. Systemd edition.
How-To-Secure-A-Linux-Server - An evolving how-to guide for securing a Linux server.
PowerDNS - PowerDNS Authoritative, PowerDNS Recursor, dnsdist
Whonix - Whonix is an operating system focused on anonymity, privacy and security. It's based on the Tor anonymity network, Debian GNU/Linux and security by isolation. DNS leaks are impossible, and not even malware with root privileges can find out the user's real IP. https://www.whonix.org
prowler - Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
ubuntu-hardened-host - Hardened (FIPS) Host for NGINX, Docker, Kubernets, etc
bastion - 🔒Secure Bastion implemented as Docker Container running Alpine Linux with Google Authenticator & DUO MFA support
wireguard-namespace-service - A systemd service that creates isolated network namespace with routing through WireGuard