服务端安全加固资料索引

• Personal notes on building/configuring a server: Here are various notes I’ve made for creating a server. These rules are for Ubuntu running nginx. I have some notes for Apache that I may add at another time.

• 让 Linux 更安全: 在这三篇系列文章中，您将看到如何以一种安全的方法来计划、设计、安装、配置和维护运行 Linux 的系统。除了安全概念的理论概述、安装问题、潜在的危险及其作用以外，您还将得到关于如何保护和加固基于 Linux 的系统 的实用建议。我们将讨论最小化安装、加固 Linux 安装、授权 / 认证、本地和网络安全、攻击和如何防御攻击，以及 数据安全、病毒和恶意程序。

• Linux_Workstation_Harden_Security

• macOS-Security-and-Privacy-Guide

• Google’s Infrastructure Security Design Overview

• 技术分享 | 自制攻击欺骗防御系统

OpenSource

• 2021-Prowler : Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness.

• 2021-LunaSec : Security & Compliance SDKs to stop data leaks in your software. With just a few lines, LunaSec adds a Zero Trust Architecture across your stack, Unique Per-Record Encryption, and protection from common security issues like XSS, SQL Injection, and RCE. Try it out live here: https://app.lunasec.dev