the-practical-linux-hardening-guide
Linux security guide
A comprehensive guide to creating secure Linux production systems using industry standards and best practices
This guide details creating a secure Linux production system. OpenSCAP (C2S/CIS, STIG).
10k stars
306 watching
618 forks
last commit: 4 months ago
Linked from 2 awesome lists
auditcentoschecklistcisguidehardeninglinuxlinux-hardeninglinux-securitymanualopenscappci-dssredhat-enterprise-linuxsecurity
decalage2/awesome-security-hardening
spacial/awesome-systoolsRelated projects:
| Repository | Description | Stars |
|---|---|---|
| trimstray/linux-hardening-checklist | A checklist to help secure GNU/Linux production systems by reducing vulnerability and attack surface | 1,507 |
 imthenachoman/how-to-secure-a-linux-server | An evolving how-to guide for securing a Linux server | 17,642 |
 dev-sec/ansible-collection-hardening | Provides hardening measures for various systems and services to improve security | 4,116 |
 freach/kubernetes-security-best-practice | A comprehensive guide to securing Kubernetes clusters in the cloud or on-premises | 2,695 |
 linuxserver/docker-swag | An all-in-one web application gateway with Nginx, PHP, and security features | 2,941 |
 bettercrypto/applied-crypto-hardening | Documenting and maintaining best practices for secure online communication using cryptography. | 704 |
 cohdjn/cisecurity | Automates Linux hardening to conform to Center for Internet Security Benchmark standards | 9 |
 konstruktoid/hardening | A script to harden a Ubuntu server for security | 1,394 |
 google/opensk | An open-source implementation of FIDO2 security keys in Rust | 3,036 |
 ovh/debian-cis | Provides modular security hardening scripts for Debian distributions based on CIS security standards | 781 |
 marshyski/quick-secure | Automates UNIX/Linux system hardening and security configuration | 415 |
 pratiktri/server_init_harden | Automates server security hardening on initial login as root | 94 |
 anthraxx/linux-hardened | A minimal Linux kernel hardening project | 574 |
 copperhead/linux-hardened | A customized Linux distribution designed to prioritize security and stability for resource-constrained environments. | 5 |
| google/nsjail | A lightweight process isolation tool for Linux that provides isolated environments for network services and local processes. | 3,008 |