debian-cis
pam-u2f
Our great sponsors
debian-cis | pam-u2f | |
---|---|---|
3 | 3 | |
663 | 517 | |
7.3% | 1.5% | |
7.3 | 6.0 | |
17 days ago | 25 days ago | |
Shell | C | |
GNU General Public License v3.0 or later | BSD 2-clause "Simplified" License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
debian-cis
- Q: How many have actually secured thier server?
-
Any tool to check the security of my server?
I normally use debian-cis: https://github.com/ovh/debian-cis
- Basic Server Hardening Steps
pam-u2f
What are some alternatives?
ansible-collection-hardening - This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL
virtual-fido - A Virtual FIDO2 USB Device
hardening - Hardening Ubuntu. Systemd edition.
lynis - Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
http-observatory - Mozilla HTTP Observatory
How-To-Secure-A-Linux-Server - An evolving how-to guide for securing a Linux server.
yubikey-full-disk-encryption - Use YubiKey to unlock a LUKS partition
Whonix - Whonix is an operating system focused on anonymity, privacy and security. It's based on the Tor anonymity network, Debian GNU/Linux and security by isolation. DNS leaks are impossible, and not even malware with root privileges can find out the user's real IP. https://www.whonix.org
bastion - 🔒Secure Bastion implemented as Docker Container running Alpine Linux with Google Authenticator & DUO MFA support
prowler - Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more