Alternatives and similar repositories for aa-profiles

Users that are interested in aa-profiles are comparing it to the libraries listed below

• ThomasHabets / simple-tpm-pk11
  Simple PKCS11 provider for TPM chips
  ☆255Updated last year
• ioerror / tlsdate
  secure parasitic rdate replacement
  ☆368Updated 7 years ago
• stribika / sshlabs
  SSH configuration analysis
  ☆74Updated 2 years ago
• shpedoikal / tpm-luks
  LUKS support for storing keys in TPM NVRAM
  ☆185Updated 7 years ago
• dns-violations / dns-violations
  List of DNS violations by implementations, software and/or systems
  ☆241Updated 2 years ago
• sektioneins / micro-ca-tool
  Small-scale CA with SmartCard support - CLI wrapper for OpenSSL and OpenSC
  ☆61Updated 5 years ago
• tfheen / ykfde
  Yubikey full disk encryption
  ☆128Updated 9 years ago
• stribika / duraconf
  duraconf - A collection of hardened configuration files for SSL/TLS services
  ☆56Updated 10 years ago
• PowerDNS / weakforced
  Anti-Abuse for servers at authentication time
  ☆129Updated last week
• irtimmer / tpm2-pk11
  [DEPRECATED] PKCS#11 Module for TPM 2.0
  ☆68Updated 5 years ago
• squash / sudosh2
  sudosh is an auditing shell filter and can be used as a login shell. Sudosh records all keystrokes and output and can play back the sessi…
  ☆87Updated last year
• richb-hanover / CeroWrtScripts
  A set of scripts spawned by the CeroWrt project http://bufferbloat.net/projects/cerowrt
  ☆65Updated 5 years ago
• cloudtools / ssh-ca
  Management utilities to support a certificate authority for ssh keys
  ☆261Updated 8 years ago
• arekinath / pivy
  Tools for using PIV tokens (like Yubikeys) as an SSH agent, for encrypting data at rest, and more
  ☆209Updated 3 months ago
• oparoz / cipherscan
  A very simple way to find out which SSL ciphersuites are supported by a target.
  ☆58Updated 10 years ago
• mikesmitty / curse
  CURSE is an SSH certificate signing server, built as an alternative to Netflix's BLESS tool, but without a dependency on AWS.
  ☆223Updated last year
• wied03 / centos-package-cron
  A security update tool for CentOS
  ☆84Updated 5 years ago
• DNS-OARC / validns
  DNS and DNSSEC zone file validator
  ☆79Updated last month
• gebi / keyctl_keyscript
  Password caching script for multiple luks volumes
  ☆59Updated 3 years ago
• herlo / ssh-gpg-smartcard-config
  Configuration to use gpg smartcards for ssh authentication
  ☆112Updated 4 years ago
• amazon-archives / certlint
  X.509 certificate linter
  ☆157Updated 5 years ago
• mricon / howler
  Alert when users log in from new locations
  ☆41Updated 8 years ago
• minipli / linux-unofficial_grsec
  Unofficial forward ports of the last publicly available grsecurity patch
  ☆153Updated 7 years ago
• kroeckx / x509lint
  Tool to check X509 certificates
  ☆73Updated 4 years ago
• OwlCyberDefense / refpolicy
  refpolicy has moved to https://github.com/SELinuxProject/refpolicy
  ☆127Updated 7 years ago
• stribika / stribika.github.io
  ☆307Updated 2 years ago
• coldhakca / coldkernel
  Hardened kernel generation - Deprecated
  ☆48Updated 8 years ago
• mjg59 / tpmtotp
  Use a TPM to store a TOTP token in order to attest boot state to another device
  ☆208Updated last year
• fcaviggia / hardening-script-el6
  DISA STIG/USGCB/NSA SNAC Hardening Scripts for Red Hat Enterprise Linux 6
  ☆201Updated 5 years ago
• kirei / catt
  Certification Authority Trust Tracker
  ☆126Updated 7 years ago