SaaSHub helps you find the best software and product alternatives Learn more →
Similar projects and alternatives to ansible-collection-hardening
CrowdSec - the open-source and participative IPS able to analyze visitor behavior & provide an adapted response to all kinds of attacks. It also leverages the crowd power to generate a global CTI database to protect the user network.
PCI-DSS compliant Debian 9/10 hardening
Clean code begins in your IDE with SonarLint. Up your coding game and discover issues early. SonarLint is a free plugin that helps you find & fix bugs and security issues from the moment you start writing code. Install from your favorite IDE marketplace today.
Ansible role for Red Hat 7 CIS Baseline
Quick and Easy server testing/validation
Ansible role to install a rootless Docker server
Scripts to build your own IPsec VPN server, with IPsec/L2TP, Cisco IPsec and IKEv2
Access the most powerful time series database as a service. Ingest, store, & analyze all types of time series data in a fully-managed, purpose-built database. Keep data forever with low-cost storage and superior data compression.
Ansible collection for NGINX
InSpec: Auditing and Testing Framework
Streisand sets up a new server running your choice of WireGuard, OpenConnect, OpenSSH, OpenVPN, Shadowsocks, sslh, Stunnel, or a Tor bridge. It also generates custom instructions for all of these services. At the end of the run you are given an HTML file with instructions that can be shared with friends, family members, and fellow activists.
An evolving how-to guide for securing a Linux server.
The systemd System and Service Manager
Set up a personal VPN in the cloud
Build your personal knowledge base with Trilium Notes
Wiki.js | A modern and powerful wiki app built on Node.js
Nginx Proxy Manager
Docker container for managing Nginx proxy hosts with a simple, powerful interface
get things from one computer to another, safely [Moved to: https://github.com/magic-wormhole/magic-wormhole] (by warner)
Win32 port of OpenSSH
Community plugins list, theme list, and releases of Obsidian.
validate the structure of your container images
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
ansible-collection-hardening reviews and mentions
Ansible for automation/ hardening.
4 projects | reddit.com/r/ansible | 10 Aug 2022
How do you document your (whole) setup ? Looking for ideas.
7 projects | reddit.com/r/selfhosted | 5 Feb 2022
To ensure SSH and other security related things are configured correctly, you can take a look at DevSec which helps you to apply proven security configuration principles. Also there is guides like "Secure Secure Shell" which can help you to better understand what you can do to increase the security of your servers (this one is from 2015 but many aspects are still relevant).
Recommendations for advanced material (reading material, courses, etc) on server security?
2 projects | reddit.com/r/selfhosted | 26 Jan 2022
I learned a lot by using and reading through the source code of these ansible roles: https://github.com/dev-sec/ansible-collection-hardening
SSH Bastion host best practices: How to Build and Deploy a Security-Hardened SSH Bastion Host
2 projects | reddit.com/r/linuxadmin | 14 Jan 2022
You can do much more https://github.com/dev-sec/ansible-collection-hardening/tree/master/roles/ssh_hardening
Unit tests for hardened images
6 projects | reddit.com/r/devops | 6 Sep 2021
In the past, I have used the inspec part of : https://dev-sec.io
The Streisand project has been archived
3 projects | news.ycombinator.com | 5 Sep 2021
There’s Dev-Sec which is more about multi-OS-platform as well as multi-IaS (Ansible, Puppet, Chef).
Free, to boot.
I’ve been cryptojacked twice running self hosted apps
5 projects | reddit.com/r/selfhosted | 1 Jul 2021
It's one of the most secure services to expose over the Internet (assuming you've setup key-based authentication - and some additional measures like restricting SSH access to a group. You can harden it a lot more)
Basic Server Hardening Steps
5 projects | reddit.com/r/selfhosted | 5 Jun 2021
3 projects | reddit.com/r/redhat | 7 Apr 2021
I also found some Ansible code that looks solid - for whomever is interested: https://github.com/dev-sec/ansible-collection-hardening
Linux Hardening Guide
9 projects | news.ycombinator.com | 30 Dec 2020
While I did not read this properly yet, it seems like a good primer.
There is also a great set of ansible playbooks and roles that should cover this and more that is a good base for Linux servers: https://github.com/dev-sec/ansible-collection-hardening
A note from our sponsor - #<SponsorshipServiceOld:0x00007f1610b54898>
www.saashub.com | 23 Mar 2023
dev-sec/ansible-collection-hardening is an open source project licensed under Apache License 2.0 which is an OSI approved license.
- ansible-collection-hardening VS debian-cis
- ansible-collection-hardening VS crowdsec
- ansible-collection-hardening VS RHEL7-CIS
- ansible-collection-hardening VS ansible-role-docker-rootless
- ansible-collection-hardening VS goss
- ansible-collection-hardening VS setup-ipsec-vpn
- ansible-collection-hardening VS ansible-collection-nginx
- ansible-collection-hardening VS madaidans-insecurities.github.io
- ansible-collection-hardening VS streisand
- ansible-collection-hardening VS netboot.xyz