imthenachoman / How-To-Secure-A-Linux-Server

9k

An evolving how-to guide for securing a Linux server.

linux hardening hardening-steps security security-hardening server linux-server cc-by-sa

Updated Apr 12, 2019

future-architect / vuls

6.4k

Agent-less vulnerability scanner for Linux/FreeBSD/WordPress/Programming language libraries/Network devices

Go Updated Apr 25, 2019

CISOfy / lynis

5.9k

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27…

Good first issues

Gather info on expired passwords and locked accounts

good first issue help wanted

#474 opened over 1 year ago by sigio

3

Shell Updated Apr 29, 2019

pyllyukko / user.js

1.6k

user.js -- Firefox configuration hardening

mozilla-firefox privacy firefox security security-hardening mozilla

JavaScript Updated May 3, 2019

toniblyx / prowler

1.4k

AWS Security Best Practices Assessment, Auditing, Hardening and Forensics Readiness Tool. It follows guidelines of th…

security security-tools security-audit security-hardening cloudtrail hardening aws-cli aws cis-benchmark prowler assessment aws-auditing compliance gdpr hipaa cis forensics cloud well-architected

Good first issues

Run Prowler using Fargate

documentation

#299 opened 2 months ago by toniblyx

7

Shell Updated Apr 30, 2019

intika / Librefox

1.3k

Librefox: Firefox with privacy enhancements

JavaScript Updated Mar 30, 2019

eliotsykes / rails-security-checklist

1.2k

🔑 Community-driven Rails Security Checklist (see our GitHub Issues for the newest checks that aren't yet in the README)

checklist rails-security rails rails-security-checklist ruby-on-rails security-audit security-hardening security

Ruby Updated Aug 20, 2018

google / sandboxed-api

1k

Sandboxed API automatically generates sandboxes for C/C++ libraries

sandboxing sandbox security security-hardening

C++ Updated May 3, 2019

wazuh / wazuh

896

Wazuh - Host and endpoint security

wazuh ossec security loganalyzer compliance monitoring intrusion-detection policy-monitoring elasticsearch openscap security-hardening ids pci-dss file-integrity-management security-awareness log-analysis vulnerability-detection incident-response

C Updated May 3, 2019

ComplianceAsCode / content

653

Security compliance content in SCAP, Bash, Ansible, and other formats

Good first issues

Beginners Starting Point?

documentation

#4272 opened 24 days ago by kclinden

9

Developer Guide doesn't fully reflect the latest structural changes

documentation Text

#3246 opened 8 months ago by jan-cerny

1

Python Updated May 3, 2019

immunant / c2rust

564

C to Rust translation, refactoring, and cross-checking

transpiler rust security-hardening migration translation memory-safety cross-checking

Rust Updated May 3, 2019

alichtman / stronghold

482

Easily configure macOS security settings from the terminal.

macos-setup macos security osx security-hardening hardening command-line-tool command-line

Good first issues

Update for macOS Mojave

good first issue Hacktoberfest

#56 opened 6 months ago by alichtman

Python Updated Jan 29, 2019

denji / golang-tls

470

Simple Golang HTTPS/TLS Examples

http2 https-server https httpclient golang go openssl libressl awesome tools security-hardening security-tools security-audit security-scanner secure security

Updated Apr 30, 2019

FusionAuth / security-scripts

422

Scripts built from our Guide to User Data Security

security-hardening chef-recipes security fusionauth

Shell Updated Oct 21, 2018

USBGuard / usbguard

414

USBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are aut…

usb usb-devices c-plus-plus rule-language security security-hardening whitelist blacklist linux

Good first issues

Use shared library versioning

difficulty:easy C:libusbguard

#17 opened about 4 years ago by dkopecek

C++ Updated Apr 9, 2019

cagataycali / xss-listener

405

🕷️ XSS Listener is a penetration tool for easy to steal data with various XSS.

xss xss-attacks security-hardening security-tools xss-harvest xss-harvester

JavaScript Updated Dec 10, 2018

konstruktoid / hardening

372

Hardening Ubuntu. Systemd edition.

ubuntu ubuntu-server shell hardening security security-hardening systemd

Shell Updated May 3, 2019

ansible / ansible-lockdown

338

Ansible playbook roles for security

ansible stig cis disa security-hardening security-automation

Updated Sep 7, 2018

marshyski / quick-secure

326

Quickly secure UNIX/Linux systems

linux security security-hardening docker docker-security

Shell Updated Aug 5, 2015

blabla1337 / skf-flask

311

Security Knowledge Framework (SKF) Python Flask / Angular project

owasp-skf secure-by-default security security-audit security-hardening secure-coding security-training security-framework security-knowledge security-standards security-requirements

HTML Updated Apr 30, 2019

MindPointGroup / RHEL7-CIS

204

Ansible role for Red Hat 7 CIS Baseline

cis security-hardening rhel7 ansible-role security

Good first issues

Azure image requires UDF mounting support.

docs

#85 opened about 1 year ago by hakabo

7

Makefile Updated Apr 19, 2019

ikkisoft / SerialKiller

199

Look-Ahead Java Deserialization Library

deserialization java security security-hardening

Java Updated Apr 4, 2018

wazuh / wazuh-ruleset

188

Wazuh - Ruleset

wazuh ossec security loganalyzer compliance monitoring intrusion-detection policy-monitoring elasticsearch openscap security-hardening ids pci-dss file-integrity-management security-awareness log-analysis vulnerability-detection incident-response

Python Updated May 3, 2019

Jsitech / JShielder

183

Hardening Script for Linux Servers/ Secure LAMP-LEMP Deployer

linux cis-benchmark linux-server hardening ubuntu-server centos7 lamp-stack hardening-steps iptables ubuntu1604 ubuntu1804 security-hardening system-hardening

PHP Updated Mar 11, 2019

MindPointGroup / RHEL7-STIG

152

Ansible role for Red Hat 7 STIG Baseline

security-hardening stig ansible-role rhel7 security

Python Updated May 2, 2019

immunant / selfrando

152

Function order shuffling to defend against ROP and other types of code reuse

mitigations linux security-hardening defense diversity randomization mitigation aslr

C++ Updated Apr 24, 2019

nozaq / terraform-aws-secure-baseline

103

Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services F…

terraform aws security security-hardening terraform-modules hardening cis-benchmark aws-auditing security-tools devops

HCL Updated May 2, 2019

MindPointGroup / RHEL6-STIG

92

Ansible role for Red Hat 6 DISA STIG

stig ansible-role security security-hardening rhel6

Shell Updated Dec 26, 2018

wazuh / wazuh-kibana-app

89

Wazuh - Kibana plugin

JavaScript Updated May 3, 2019

wazuh / wazuh-docker

88

Wazuh - Docker containers

wazuh docker ossec security loganalyzer compliance monitoring intrusion-detection policy-monitoring elasticsearch openscap security-hardening log-analysis ids pci-dss file-integrity-management security-awareness vulnerability-detection incident-response

Shell Updated May 3, 2019

security-hardening

Repositories 168

Good first issues

Good first issues

Good first issues

Good first issues

Good first issues

Good first issues