DevSec Examples
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Failed to load latest commit information.
ansible-linux update gemfile Apr 12, 2017

DevOps Server Hardening

The Hardening Framework combines DevOps with Security. It implements hardening for Puppet, Chef and Ansible.

One of the main goals for the Hardening Framework it to provide security as a plug-in mechanism. All modules are implemented as overlay modules and work in conjunction with the corresponding open source module like apache or nginx. This enables you to drop in hardening for your staging and production environments and reuse existing developments.


The framework consists of multiple hardening components:

Most components are implemented in Ansible, Chef and Puppet.


This repository contains examples and tools to harden your server. A subfolder for each DevOps tool exists and a readme guides you accordingly:

├── ansible-linux
├── chef-linux
└── puppet

License and Author

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.