Skip to content


Here are 254 public repositories matching this topic...

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

  • Updated Jun 15, 2021
  • Shell

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains all CIS controls listed here and more than 100 additional checks that help on GDPR, HIPAA and other security requirements.

  • Updated Jun 17, 2021
  • Shell
WhiteWinterWolf commented May 1, 2021

I'm not confident in the security brought by the readonly_exec statement.

In the classical *nix DAC model, it is expected for unprivileged users to be able to change the write permission flag on files they own. Therefore, Snuffleupagus readonly_exec statement only relies on the hope that an attacker won't find a way to rely on this standard mechanism to prevent the execution of arbitrary


Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.

  • Updated Jun 3, 2021
  • Python

Improve this page

Add a description, image, and links to the security-hardening topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the security-hardening topic, visit your repo's landing page and select "manage topics."

Learn more