Alternatives and similar repositories for hardening:

Users that are interested in hardening are comparing it to the libraries listed below

• konstruktoid / ansible-role-hardening
  Ansible role to apply a security baseline. Systemd edition.
  ☆551Updated this week
• dev-sec / ansible-collection-hardening
  This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL
  ☆4,245Updated this week
• ovh / debian-cis
  PCI-DSS compliant Debian 10/11/12 hardening
  ☆829Updated 5 months ago
• trimstray / linux-hardening-checklist
  Simple checklist to help you deploying the most important areas of the GNU/Linux production systems - work in progress.
  ☆1,527Updated 3 months ago
• Neo23x0 / auditd
  Best Practice Auditd Configuration
  ☆1,577Updated last month
• OpenSCAP / openscap
  NIST Certified SCAP 1.2 toolkit
  ☆1,444Updated this week
• openstack / ansible-hardening
  Ansible role for security hardening. Mirror of code maintained at opendev.org.
  ☆677Updated last week
• dev-sec / linux-baseline
  DevSec Linux Baseline - InSpec Profile
  ☆797Updated 6 months ago
• ComplianceAsCode / content
  Security automation content in SCAP, Bash, Ansible, and other formats
  ☆2,346Updated this week
• Tripwire / tripwire-open-source
  Open Source Tripwire®
  ☆880Updated last year
• Jsitech / JShielder
  Hardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark
  ☆768Updated last year
• trimstray / the-practical-linux-hardening-guide
  This guide details creating a secure Linux production system. OpenSCAP (C2S/CIS, STIG).
  ☆10,048Updated 3 months ago
• trimstray / iptables-essentials
  Iptables Essentials: Common Firewall Rules and Commands.
  ☆1,517Updated 3 months ago
• geerlingguy / ansible-role-security
  Ansible Role - Security
  ☆842Updated last week
• dev-sec / ansible-ssh-hardening
  This Ansible role provides numerous security-related ssh configurations, providing all-round base protection.
  ☆776Updated 4 years ago
• CISOfy / lynis
  Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and sys…
  ☆13,909Updated last month
• cloudflare / flan
  A pretty sweet vulnerability scanner
  ☆4,113Updated 5 months ago
• jtesta / ssh-audit
  SSH server & client security auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
  ☆3,572Updated 3 months ago
• hardenedlinux / harbian-audit
  Hardened Debian GNU/Linux distro auditing
  ☆454Updated 8 months ago
• debops / debops
  DebOps - Your Debian-based data center in a box
  ☆1,297Updated 4 months ago
• arthepsy / ssh-audit
  SSH server auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
  ☆2,970Updated 8 months ago
• PaulSec / awesome-windows-domain-hardening
  A curated list of awesome Security Hardening techniques for Windows.
  ☆1,761Updated 5 years ago
• a13xp0p0v / kernel-hardening-checker
  A tool for checking the security hardening options of the Linux kernel
  ☆1,789Updated 2 weeks ago
• grapheneX / grapheneX
  Automated System Hardening Framework
  ☆979Updated last week
• ansible-lockdown / RHEL7-CIS
  Automated CIS Benchmark Compliance Remediation for RHEL 7 with Ansible
  ☆478Updated 2 weeks ago
• Security-Onion-Solutions / security-onion
  Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management
  ☆3,086Updated 3 years ago
• florianutz / Ubuntu1804-CIS
  Ubuntu CIS Hardening Ansible Role
  ☆213Updated 3 months ago
• rfxn / linux-malware-detect
  Linux Malware Detection (LMD)
  ☆1,237Updated 2 weeks ago
• pfelk / pfelk
  pfSense/OPNsense + Elastic Stack
  ☆1,106Updated last month
• StamusNetworks / SELKS
  A Suricata based IDS/IPS/NSM distro
  ☆1,516Updated 7 months ago