Alternatives and similar repositories for hardening:

Users that are interested in hardening are comparing it to the libraries listed below

• konstruktoid / ansible-role-hardening
  Ansible role to apply a security baseline. Systemd edition.
  ☆566Updated last week
• dev-sec / ansible-collection-hardening
  This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL
  ☆4,376Updated last week
• trimstray / linux-hardening-checklist
  Simple checklist to help you deploying the most important areas of the GNU/Linux production systems - work in progress.
  ☆1,538Updated 5 months ago
• Neo23x0 / auditd
  Best Practice Auditd Configuration
  ☆1,615Updated 3 months ago
• openstack / ansible-hardening
  Ansible role for security hardening. Mirror of code maintained at opendev.org.
  ☆680Updated 2 weeks ago
• dev-sec / linux-baseline
  DevSec Linux Baseline - InSpec Profile
  ☆806Updated 8 months ago
• ComplianceAsCode / content
  Security automation content in SCAP, Bash, Ansible, and other formats
  ☆2,416Updated this week
• ovh / debian-cis
  PCI-DSS compliant Debian 10/11/12 hardening
  ☆862Updated 3 weeks ago
• OpenSCAP / openscap
  NIST Certified SCAP 1.2 toolkit
  ☆1,491Updated last week
• trimstray / iptables-essentials
  Iptables Essentials: Common Firewall Rules and Commands.
  ☆1,529Updated 5 months ago
• Jsitech / JShielder
  Hardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark
  ☆774Updated last year
• arthepsy / ssh-audit
  SSH server auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
  ☆2,972Updated 10 months ago
• grapheneX / grapheneX
  Automated System Hardening Framework
  ☆1,007Updated 2 months ago
• hardenedlinux / harbian-audit
  Hardened Debian GNU/Linux distro auditing
  ☆452Updated 10 months ago
• trimstray / the-practical-linux-hardening-guide
  This guide details creating a secure Linux production system. OpenSCAP (C2S/CIS, STIG).
  ☆10,108Updated 5 months ago
• dev-sec / cis-docker-benchmark
  CIS Docker Benchmark - InSpec Profile
  ☆506Updated 2 years ago
• CISOfy / lynis
  Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and sys…
  ☆14,142Updated last month
• Tripwire / tripwire-open-source
  Open Source Tripwire®
  ☆892Updated last year
• jtesta / ssh-audit
  SSH server & client security auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
  ☆3,650Updated 2 weeks ago
• debops / debops
  DebOps - Your Debian-based data center in a box
  ☆1,305Updated 6 months ago
• decalage2 / awesome-security-hardening
  A collection of awesome security hardening guides, tools and other resources
  ☆5,740Updated 7 months ago
• florianutz / Ubuntu1804-CIS
  Ubuntu CIS Hardening Ansible Role
  ☆213Updated this week
• firehol / firehol
  A firewall for humans...
  ☆1,518Updated 2 weeks ago
• ansible-lockdown / RHEL7-CIS
  Automated CIS Benchmark Compliance Remediation for RHEL 7 with Ansible
  ☆478Updated this week
• wallarm / awesome-nginx-security
  🔥 A curated list of awesome links related to application security related to the environments with NGINX or Kubernetes Ingres Controller…
  ☆758Updated last year
• pomerium / awesome-zero-trust
  A curated collection of awesome resources for the zero-trust security model.
  ☆750Updated 2 years ago
• cisagov / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆2,111Updated last week
• wazuh / wazuh-ansible
  Wazuh - Ansible playbook
  ☆331Updated this week
• pfelk / pfelk
  pfSense/OPNsense + Elastic Stack
  ☆1,122Updated 3 months ago
• finalduty / cis-benchmarks-audit
  Simple command line tool to check for compliance against CIS Benchmarks
  ☆260Updated last year