Our great sponsors
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
ansible-collection-hardening
This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL
I gave it a read and nothing really stood out as being unreasonable unless you can point to specifics. Inspec is open source.
For reference: https://goss.rocks ( points to the GitHub page)
In the past, I have used the inspec part of : https://dev-sec.io
NOTE:
The number of mentions on this list indicates mentions on common posts plus user suggested alternatives.
Hence, a higher number means a more popular project.
Related posts
- Tools for validating K8s features
- Is docker the right tool for my use case? (testing an installscript)
- Portable security testing tooling (not chef inspec)
- what's your goto tool for smoke-testing your site? tls, security headers, 401's, 403's, custom 404, 500 pages, redirects etc.
- CI/CD Pipelines for testing standard open-source Distro like Ubuntu with docker images on it?