An evolving how-to guide for securing a Linux server.
-
Updated
Oct 19, 2024
#
security-hardening
Here are 310 public repositories matching this topic...
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
linux shell auditing devops unix security-audit pci-dss compliance hardening security-vulnerability security-hardening devops-tools hipaa vulnerability-detection vulnerability-scanners security-scanner vulnerability-assessment gdpr security-tools system-hardening
-
Updated
Jul 8, 2025 - Shell
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
security security-audit log-analysis incident-response cybersecurity pci-dss infosec compliance xdr siem security-hardening vulnerability-detection security-automation security-tools wazuh cloud-security malware-detection container-security file-integrity-monitoring configuration-assessement
-
Updated
Jul 16, 2025 - C
Prowler is the Open Cloud Security platform for AWS, Azure, GCP, Kubernetes, M365 and more. It helps for continuous monitoring, security assessments & audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, ENS and more
python aws security security-audit cloud azure iam gcp forensics compliance hardening security-hardening gdpr multi-cloud security-tools cloudsecurity devsecops cis-benchmark well-architected cspm
-
Updated
Jul 15, 2025 - Python
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
go linux golang freebsd security security-audit administrator cybersecurity security-vulnerability vulnerabilities security-hardening vulnerability-detection vulnerability-management vulnerability-scanners security-scanner vulnerability-assessment vuls security-automation security-tools vulnerability-scanner
-
Updated
Jul 16, 2025 - Go
A collection of awesome security hardening guides, tools and other resources
security best-practices cybersecurity infosec awesome-list security-hardening cyber-security computer-security blueteam security-tools blue-team linux-hardening cis-benchmarks windows-hardening
-
Updated
Oct 2, 2024
Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy
macos linux security privacy domain-driven-design cybersecurity cleanup windows10 bloatware security-hardening tweaks-collection security-tools privacy-protection debloat privacy-tools debotnet security-tool debloater bloatware-removal windows11
-
Updated
Apr 21, 2025 - TypeScript
Migrate C code to Rust
-
Updated
Jul 16, 2025 - Rust
user.js -- Firefox configuration hardening
-
Updated
Feb 10, 2025 - JavaScript
Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Personal, Enterprise, Government and Military security levels | Read The Rationale https://github.com/HotCakeX/Harden-Windows-Security/blob/main/Rationale.md
windows security encryption module powershell defender security-hardening tpm2 powershell-script proactive bitlocker firewall-configuration harden windowsdefender enterprise-security wdac windows11 applicationcontrol operation-system-security 1st-party-security
-
Updated
Jul 4, 2025 - C#
Security automation content in SCAP, Bash, Ansible, and other formats
security ansible cybersecurity pci-dss application-security compliance scap hardening security-hardening xccdf oval cpe information-security cce usgcb ospp stig security-automation security-tools security-profile
-
Updated
Jul 16, 2025 - Shell
Librefox: Firefox with privacy enhancements
firefox security privacy browser addon freedom mozilla android-application free-software libre mac-app android-app security-hardening linux-app mozilla-firefox windows-app anti-fingerprinting libresoftware libre-software extensions-firewall
-
Updated
Mar 28, 2021 - JavaScript
Generate sandboxes for C/C++ libraries automatically
-
Updated
Jul 15, 2025 - C++
Secure-by-default HTTP servers in Go.
-
Updated
May 30, 2025 - Go
Hardening Ubuntu. Systemd edition.
shell security ubuntu systemd hardening ubuntu-server security-hardening information-security hacktoberfest security-automation security-tools security-compliance
-
Updated
Jul 16, 2025 - Shell
🔑 Community-driven Rails Security Checklist (see our GitHub Issues for the newest checks that aren't yet in the README)
rails checklist security security-audit ruby-on-rails security-hardening rails-security rails-security-checklist
-
Updated
Jul 17, 2022 - Ruby
Simple Golang HTTPS/TLS Examples
go golang security security-audit awesome tools openssl https http2 secure httpclient libressl security-hardening https-server security-scanner security-tools
-
Updated
Nov 20, 2020
USBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are authorized) as well as method of use policies (how a USB device may interact with the system)
linux security c-plus-plus whitelist blacklist usb security-hardening usb-devices rule-language hacktoberfest
-
Updated
Jul 15, 2025 - C++
a collection about Windows 11
microsoft windows security windows10 hardening security-hardening windows-defender defender-credential-guard defender-application-guard windows11
-
Updated
Feb 23, 2025
Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.
aws security devops terraform hardening security-hardening terraform-modules security-tools cis-benchmark aws-auditing terraform-module
-
Updated
Jul 9, 2024 - HCL
Improve this page
Add a description, image, and links to the security-hardening topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the security-hardening topic, visit your repo's landing page and select "manage topics."