Alternatives and similar repositories for hardening

Users that are interested in hardening are comparing it to the libraries listed below

• ovh / debian-cis
  PCI-DSS compliant Debian 11/12 hardening
  ☆923Updated last week
• konstruktoid / ansible-role-hardening
  Ansible role to apply a security baseline. Systemd edition.
  ☆594Updated this week
• trimstray / linux-hardening-checklist
  Simple checklist to help you deploying the most important areas of the GNU/Linux production systems - work in progress.
  ☆1,579Updated 9 months ago
• dev-sec / ansible-collection-hardening
  This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL
  ☆4,576Updated last week
• Neo23x0 / auditd
  Best Practice Auditd Configuration
  ☆1,678Updated 7 months ago
• arthepsy / ssh-audit
  SSH server auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
  ☆2,985Updated last year
• hardenedlinux / harbian-audit
  Hardened Debian GNU/Linux distro auditing
  ☆456Updated last year
• jtesta / ssh-audit
  SSH server & client security auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
  ☆3,866Updated last week
• debops / debops
  DebOps - Your Debian-based data center in a box
  ☆1,344Updated 10 months ago
• OpenSCAP / openscap
  NIST Certified SCAP 1.2 toolkit
  ☆1,564Updated last month
• ComplianceAsCode / content
  Security automation content in SCAP, Bash, Ansible, and other formats
  ☆2,530Updated this week
• trimstray / the-practical-linux-hardening-guide
  This guide details creating a secure Linux production system. OpenSCAP (C2S/CIS, STIG).
  ☆10,262Updated 9 months ago
• firehol / firehol
  A firewall for humans...
  ☆1,548Updated last month
• alivx / CIS-Ubuntu-20.04-Ansible
  Ansible Role to Automate CIS v1.1.0 Ubuntu Linux 18.04 LTS, 20.04 LTS Remediation
  ☆258Updated last year
• Jsitech / JShielder
  Hardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark
  ☆779Updated last year
• ansible-lockdown / RHEL7-CIS
  Automated CIS Benchmark Compliance Remediation for RHEL 7 with Ansible
  ☆484Updated last month
• grapheneX / grapheneX
  Automated System Hardening Framework
  ☆1,025Updated 6 months ago
• florianutz / Ubuntu1804-CIS
  Ubuntu CIS Hardening Ansible Role
  ☆215Updated 2 months ago
• trimstray / iptables-essentials
  Iptables Essentials: Common Firewall Rules and Commands.
  ☆1,549Updated 9 months ago
• rfxn / linux-malware-detect
  Linux Malware Detection (LMD)
  ☆1,307Updated 6 months ago
• alegrey91 / systemd-service-hardening
  Basic guide to harden systemd services
  ☆255Updated 5 years ago
• Tripwire / tripwire-open-source
  Open Source Tripwire®
  ☆909Updated last year
• florianutz / ubuntu2004_cis
  Ubuntu CIS Hardening Ansible Role
  ☆112Updated 2 months ago
• a13xp0p0v / kernel-hardening-checker
  A tool for checking the security hardening options of the Linux kernel
  ☆1,945Updated last month
• wallarm / awesome-nginx-security
  🔥 A curated list of awesome links related to application security related to the environments with NGINX or Kubernetes Ingres Controller…
  ☆770Updated last year
• BinaryDefense / artillery
  The Artillery Project is an open-source blue team tool designed to protect Linux and Windows operating systems through multiple methods.
  ☆1,025Updated 3 years ago
• dev-sec / ssh-baseline
  DevSec SSH Baseline - InSpec Profile
  ☆286Updated last year
• geerlingguy / ansible-role-security
  Ansible Role - Security
  ☆900Updated 6 months ago
• firehol / blocklist-ipsets
  ipsets dynamically updated with firehol's update-ipsets.sh script
  ☆3,561Updated last week
• finalduty / cis-benchmarks-audit
  Simple command line tool to check for compliance against CIS Benchmarks
  ☆265Updated last year