Prowler is the Open Cloud Security platform for AWS, Azure, GCP, Kubernetes, M365 and more. It helps for continuous monitoring, security assessments & audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, ENS and more

Easily configure macOS security settings from the terminal.

Wazuh - Ruleset

SELinux Reference Policy v2

Welcome Cybersecurity's World. An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources in Cybersecurity.

Harden the world is a community driven project to develop hardening guidelines and checklists for common software and devices.

Passively scan for Bluetooth Low Energy devices and attempt to fingerprint them

This repository contains an Ansible Role for RHEL7 / CentOS based on the Center for Internet Security Benchmarks

Compiles a json dataset using public sources that contains properties to aid in the detection and mitigation of over 1000 variants of ransomware.

A "SIP Torture" (RFC 4475) testing framework.

This is the official main repository for the Assimilation project

Updated for 14.0. A half days worth of work can be done in seconds, with comprehensive logging, togglable secure/performance settings, and backups. Implements a broad, time-tested, thoroughly researched, cohesive group of hardening settings for FreeBSD. Any directive can be set, re-set, for administering, tuning, jails. Verify in /vendor.

An ongoing & curated collection of awesome software practices and remediation, libraries and frameworks,payloads and techniques, best guidelines and technical resources about Application Security

UDP port knocking suite with HMAC-PSK authentication.

Ansible role for RedHat Enterprise Linux release 8 following the CIS Benchmarks

Want to see how something like Internet Chemotherapy works without bricking your own vms? This is a jail to reduce the python runtime from doing bad things on the host when running untrusted code. Nerf what you do not need 👾 + 🐛 ⚽ 🏈 🐳

Tools to support Signed Kernel Modules with DKMS in Arch Linux

Prevents XSS by figuring out how to escape untrusted values in templates

Check if Typo3 security guidelines are followed.

Python scripts to audit and harden the 2014-2017 Microsoft SQL Server