iptables/netfilter firewall for Linux servers with stateful filtering, trust system, ipset block lists, SYN flood protection, VNET per-IP policies, and Docker support
-
Updated
Mar 23, 2026 - Shell
#
server-hardening
Here are 38 public repositories matching this topic...
This script automates the scanning process using the OpenSCAP Security Guid to hardening Ubuntu systems, aligning with DISA-STIG compliance for Ubuntu 24.04. LTS minimum. It includes a range of security enhancements and configurations designed to strengthen the security posture of Ubuntu servers.
linux ubuntu shell-script ubuntu-server openscap security-tools linux-security linux-hardening server-security disa-stig server-hardening security-enhanced-linux wbfoss
-
Updated
Feb 15, 2026 - Shell
🧑💻 A comprehensive guide to Linux system administration, covering: 📜 Commands 👥 User Management 🌐 Networking 🔐 Permissions 📦 Package Management 💽 Disk Management 🛡️ Security 🤖 Automation ✅
nginx devops debian ubuntu firewall apache self-hosting fail2ban linux-server ethical-hacking ufw web-hosting system-administration linux-security cloud-security lamp-stack vps-setup linux-admin server-hardening ssh-security
-
Updated
Feb 4, 2026
An nftables configuration file with layer 7 filtering and DDoS protection for a Minecraft server. Includes rules for blocking fake sessions, query floods, and bot attacks, as well as filtering for IP addresses and port numbers.
minecraft firewall minecraft-server ddos-attacks network-security ddos-mitigation packet-filtering ddos-protection firewall-rules nftables security-rules server-security packet-blocking server-protection network-filtering layer-7-filtering server-firewall server-hardening network-hardening ddos-configuration
-
Updated
Dec 10, 2022
Automated, hardened OpenClaw setup for Ubuntu 24.04 VPS
security devops ubuntu vps linux-security server-hardening openclaw openclaw-vps openclaw-auto-install openclaw-automation
-
Updated
Feb 15, 2026 - Shell
Idempotent VPS hardening for Ubuntu — SSH, firewall, fail2ban, kernel tuning, auditd, SOPS secrets, and optional AI agent workspace security. Dry-run first, lockout protection built in.
bash devops debian ubuntu firewall selfhosted sysadmin vps infosec security-hardening homelab ufw linux-security linux-hardening server-security ssh-hardening server-hardening hardening-script
-
Updated
Feb 18, 2026 - Shell
Ghost-mode transformation for cloud servers with extreme kernel tuning and zero-bloat philosophy.
-
Updated
Jan 30, 2026 - Shell
Harden a VPS and deploy self-hosted apps in one command.
-
Updated
Mar 16, 2026 - Go
One-command Ubuntu Server hardening to achieve cutting-edge security, with ZERO ongoing maintenance required.
-
Updated
Aug 23, 2025 - Shell
Security hardening kit for OpenClaw servers. UFW firewall, fail2ban, Tailscale-only access, unattended upgrades, exposure verification.
-
Updated
Feb 3, 2026 - Shell
Comprehensive POSIX shell server hardening toolkit with automatic rollback, SSH safety, and Ansible automation for Debian-based systems
shell infrastructure ssh security ansible devops automation debian firewall posix compliance hardening system-administration linux-security server-hardening
-
Updated
Nov 4, 2025 - Shell
Ansible infrastructure-as-code for Linux server provisioning, hardening, and lifecycle management. 27 production-ready roles covering security, networking, databases, VPN, monitoring, and automated upgrades across Debian, RedHat, OpenBSD, FreeBSD, and macOS.
linux freebsd ansible openvpn devops ansible-playbook debian redhat postgresql iptables sysadmin configuration-management infrastructure-as-code ansible-roles fail2ban homelab security-automation nftables ssh-hardening server-hardening
-
Updated
Mar 12, 2026 - Jinja
WordPress security benchmark: prescriptive full-stack hardening controls for current supported WordPress releases on Linux.
-
Updated
Mar 22, 2026
Linux server hardening
-
Updated
Feb 12, 2023 - Python
One-command Linux server audit. Security score, fix commands included. Bilingual EN/RU.
linux bash ssh security devops sysadmin cybersecurity linux-security linux-hardening server-hardening
-
Updated
Mar 22, 2026 - Shell
Strengthen the security of your Ubuntu system with this powerful hardening tool based on CIS benchmarks.
bash security cis ubuntu hardening ubuntu-server cis-benchmark linux-hardening cis-benchmarks ubuntu-hardening ubuntu2004 ubuntu-cis server-hardening linux-hardened hardening-checks-for-linux cis-benchmarks-for-linux hardbuntu
-
Updated
Sep 1, 2023 - Shell
Automated Linux server provisioning, hardening, and configuration with a structured, role-based workflow.
linux infrastructure ansible devops ansible-playbook automation server sysadmin configuration-management provisioning infrastructure-as-code ansible-roles system-administration server-hardening
-
Updated
Feb 19, 2026 - Shell
AEGIS — Browser-based server security audit dashboard. Connects via SSH, runs CIS Benchmark-aligned vulnerability scans across 20+ categories, and provides one-click remediation for every finding.
nginx ssh flask security devops security-audit firewall sysadmin cybersecurity penetration-testing intrusion-detection fail2ban network-scanner linux-security vulnerability-scanner cis-benchmark server-security server-hardening openclaw
-
Updated
Mar 20, 2026 - Python
Production Ansible playbooks for server provisioning — Nginx, Docker, Node.js, hardening, monitoring agents
docker nginx ansible devops automation monitoring ubuntu prometheus infrastructure-as-code server-hardening
-
Updated
Mar 20, 2026 - Jinja
Bootstrap, hardening et gestion multi-domaines pour Debian 13 (Trixie) — OVH. Un script, zero dependance.
bash letsencrypt security devops debian apache sysadmin dkim fail2ban multi-domain ovh-api server-hardening
-
Updated
Feb 18, 2026 - Shell
Improve this page
Add a description, image, and links to the server-hardening topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the server-hardening topic, visit your repo's landing page and select "manage topics."