Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Security automation content in SCAP, Bash, Ansible, and other formats

PCI-DSS compliant Debian 10/11/12 hardening

Wazuh - Docker containers

Wazuh - Tools for packages creation

Wazuh - Amazon AWS Cloudformation

docker modsecurity reverse proxy WAF based on nginx

Official OSSEC docker container

Wazuh - Release for Bosh.io

Tools related to Server Farmer compliance with GDPR, PCI DSS, HIPAA and/or other regulations.

dockerized-cloudsplot, CloudSploit is a security and configuration scanner that can detect hundreds of threats in your AWS account. Don't let a single misstep compromise your entire infrastructure.

Docker Build for GRC Tool - Eramba is a tool that helps with compliance, risk management, control testing, exception management, etc.

Chainlink security and orchestration tools for Ubuntu server

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

An alternative to "wazuh-docker" with CI/CD-built images for amd64 and arm64, published on Docker Hub.

CST - CodeView Security Toolkit é uma ferramenta projetada para auxiliar na implementação de BASELINES de segurança em sistemas operacionais Unix. A ferramenta e composta por uma serie de scripts Shell que realiza a correção e aplica regras de segurança em sistemas Linux sem afetar seu funcionamento.

compliance as code