One-Line Installation
curl -fsSL https://harden.lynsoft.dev/install.sh | bash
Features
🚀 Ubuntu 24.04 LTS Optimized
Native support for systemd-oomd, D-Bus broker, snap security, and modern Ubuntu features.
📊 Compliance Scanning
Automated OpenSCAP and CIS benchmark compliance checking with detailed reporting.
⚙️ Modular Architecture
Selective execution, security levels, and dry-run capabilities for flexible deployment.
📈 Professional Reporting
HTML dashboards, executive summaries, and automated security status reporting.
Quick Start Examples
# Install and run with default settings
curl -fsSL https://harden.lynsoft.dev/install.sh | bash -s -- --auto-run
# Install with strict security level
curl -fsSL https://harden.lynsoft.dev/install.sh | bash -s -- --auto-run --level strict
# Install only (no auto-run)
curl -fsSL https://harden.lynsoft.dev/install.sh | bash
After Installation
# Run hardening script
sudo harden-server
# Preview changes without applying
sudo harden-server --dry-run
# Run specific modules only
sudo harden-server --only ssh-hardening,firewall
# Show available modules
sudo harden-server --list-modules
Security Levels
- minimal - Basic hardening for development/testing
- standard - Comprehensive hardening for production (default)
- strict - Advanced hardening for high-security environments
- paranoid - Maximum hardening for critical infrastructure
Version 2.1 |
GitHub |
Documentation