hardening
debian-cis
Our great sponsors
hardening | debian-cis | |
---|---|---|
5 | 3 | |
1,306 | 662 | |
- | 7.3% | |
8.8 | 7.5 | |
8 days ago | 13 days ago | |
Shell | Shell | |
Apache License 2.0 | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
hardening
-
Security Harden Ubuntu 22.04
Thanks for the link. I’m looking into it now. I also am testing out konstrukoid/hardening on GitHub
-
Any tool to check the security of my server?
There is also: https://github.com/konstruktoid/hardening
-
Industry Standard Linux Hardening Script [Ubuntu Server]
Are there any Linux(Ubuntu Server in my case) hardening scripts that abides to any well known industry standards. I can only find some scripts on Github like this one - https://github.com/konstruktoid/hardening
- Basic Server Hardening Steps
- Advice on locking down / securing servers?
debian-cis
- Q: How many have actually secured thier server?
-
Any tool to check the security of my server?
I normally use debian-cis: https://github.com/ovh/debian-cis
- Basic Server Hardening Steps
What are some alternatives?
Android-PIN-Bruteforce - Unlock an Android phone (or device) by bruteforcing the lockscreen PIN. Turn your Kali Nethunter phone into a bruteforce PIN cracker for Android devices! (no root, no adb)
ansible-collection-hardening - This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL
ansible-role-hardening - Ansible role to apply a security baseline. Systemd edition.
lynis - Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
PowerDNS - PowerDNS Authoritative, PowerDNS Recursor, dnsdist
How-To-Secure-A-Linux-Server - An evolving how-to guide for securing a Linux server.
Whonix - Whonix is an operating system focused on anonymity, privacy and security. It's based on the Tor anonymity network, Debian GNU/Linux and security by isolation. DNS leaks are impossible, and not even malware with root privileges can find out the user's real IP. https://www.whonix.org
ubuntu-hardened-host - Hardened (FIPS) Host for NGINX, Docker, Kubernets, etc
prowler - Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
wireguard-namespace-service - A systemd service that creates isolated network namespace with routing through WireGuard
bastion - 🔒Secure Bastion implemented as Docker Container running Alpine Linux with Google Authenticator & DUO MFA support