Content Alternatives

Similar projects and alternatives to content

  1. lynis

    73 content VS lynis

    Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

  2. InfluxDB

    InfluxDB – Built for High-Performance Time Series Workloads. InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.

    InfluxDB logo
  3. Packer

    Packer is a tool for creating identical machine images for multiple platforms from a single source configuration.

  4. ansible-collection-hardening

    This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL

  5. macos_security

    macOS Security Compliance Project

  6. ansible-hardening

    Ansible role for security hardening. Mirror of code maintained at opendev.org.

  7. hardening

    5 content VS hardening

    Hardening Ubuntu. Systemd edition.

  8. flake8-bandit

    Automated security testing using bandit and flake8.

  9. Stream

    Stream - Scalable APIs for Chat, Feeds, Moderation, & Video. Stream helps developers build engaging apps that scale to millions with performant and flexible Chat, Feeds, Moderation, and Video APIs and SDKs powered by a global edge network and enterprise-grade infrastructure.

    Stream logo
  10. securityonion

    Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, and case management. It also includes other tools such as osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.

  11. AMDH

    1 content VS AMDH

    Android Mobile Device Hardening

  12. ansible-role-rhel8-stig

    DISA STIG for Red Hat Enterprise Linux 8 - Ansible role generated from ComplianceAsCode Project

  13. RHEL7-STIG

    Automated STIG Benchmark Compliance Remediation for RHEL 7 with Ansible

  14. ansible-lockdown

    Discontinued Archived, new content in https://github.com/ansible-lockdown

  15. MixewayHub

    Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project contain one click docker-compose file which configure and run images from docker hub.

  16. ansible-role-hardening

    Ansible role to apply a security baseline. Systemd edition.

  17. linux-baseline

    DevSec Linux Baseline - InSpec Profile

  18. SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a better content alternative or higher similarity.

content discussion

Log in or Post with

content reviews and mentions

Posts with mentions or reviews of content. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2024-11-07.
  • Rocky Linux from CIQ – Hardened
    1 project | news.ycombinator.com | 21 Mar 2025
    I cannot speak for AlmaLinux, but it's incorrect to say they're not compatible. They are most definitely still compatible with the upstream distributions. Yes, they have made some changes that make them quite different from the upstreams, but this was their choice and it works for their community and their overall goals. I personally don't see any issues with what they've chosen to do, but that's my extremely narrow view as all clients I work for only use RHEL or Ubuntu.

    In regards to STIG, this makes me think of the "scap-security-guide" package that helps the openscap package run tests for compliance like PCI-DSS and HIPPA (among other things). While it is true that we mark ourselves as a "derivative" of RHEL in that package, it doesn't mean we have any certifications or the like and we certainly do not claim to have such certifications. The only thing we actually have officially is a CIS benchmark set at cisecurity.org.

    AlmaLinux on the other hand appears to be upstreaming themselves into the content itself, which I think is pretty cool (https://github.com/ComplianceAsCode/content/tree/master/prod...). I've always wanted to see Rocky Linux do the same thing for the past few years, but I don't know what it would take. I've asked our security team some weeks back to look into what has to be done, so maybe something will happen. I just know it will take a long, long time to get things figured out either way. (As much as I'd like to look into it myself and work with the security team, I just don't have the time in between my personal life, day job, and the project.)

  • Lynis – Security auditing and hardening tool, for Unix-based systems
    2 projects | news.ycombinator.com | 7 Nov 2024
    This is great https://github.com/ComplianceAsCode/content

    I use it for regular scanning, flagging potential issues, automatically making changes, aligning images to CIS Level 2, and for ongoing scanning to satisfy SOC2 auditors.

  • Securing your Cloud Infrastructure: A comprehensive guide to hardening, scaling, automating and monitoring your servers
    2 projects | dev.to | 26 Aug 2024
    sudo wget https://github.com/ComplianceAsCode/content/releases/download/v0.1.74/scap-security-guide-0.1.74.zip
  • Oracle linux CIS benchmark
    1 project | /r/ansible | 7 Jun 2023
  • FIPS 140 and MacOS
    2 projects | /r/NISTControls | 17 Apr 2023
    For starters there's an entire NIST project for macOS Security Compliance - https://github.com/usnistgov/macos_security this will make your life a million times easier to meet a lot of the technical controls required for compliance. Nothing like this really exists for Windows or Linux(closest is Compliance As Code https://github.com/ComplianceAsCode/content)
  • Ansible for automation/ hardening.
    4 projects | /r/ansible | 10 Aug 2022
  • I wrote a Script to bring firefox into dISA STIG compliance on RHEL 7 & 8 systems.
    1 project | /r/redhat | 24 May 2022
  • hardening a RHEL8 VM using OpenSCAP and DISA STIG
    4 projects | /r/redhat | 16 Feb 2022
  • CIS Benchmarking Git Community
    1 project | /r/ansible | 27 Apr 2021
    I haven't used this in a while but take a look at ComplianceAsCode it is attempting to apply controls for each of the different benchmarks on different OSes. It might have what you are looking for, plus you can always contribute back any changes you make to help others.
  • ComplianceAsCode/content: Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats
    1 project | /r/devopsish | 25 Feb 2021
  • A note from our sponsor - Stream
    getstream.io | 17 Jul 2025
    Stream helps developers build engaging apps that scale to millions with performant and flexible Chat, Feeds, Moderation, and Video APIs and SDKs powered by a global edge network and enterprise-grade infrastructure. Learn more →

Stats

Basic content repo stats
10
2,486
10.0
6 days ago

Sponsored
InfluxDB – Built for High-Performance Time Series Workloads
InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.
www.influxdata.com

Did you know that Shell is
the 11th most popular programming language
based on number of references?