No description
sandbox/serverspec/getting-started | ||
LICENSE.md | ||
README.md |
DevSecOps
-
(DevSec Hardening Framework](https://dev-sec.io/): Automatic Server hardening
-
Chef Inspec(Apacha 2.0 and proprietary): Infrastructure-as-Code to auto-configure VMs and apps running in it to meet compliance.
The binary installation(the one you get when you follow installation instructions) requires accepting EULA, so essentially proprietary? Please see here for the issue discussing the EULA and here for building Apache 2.0 compliant binary.
Also, there's the CINC is not CHef (CINC) project that distributes fully FOSS(Apache2.0 and free of EULAs) Chef software.
-
MITRE Security Automation Framework (SAF): framework of tools, techniques, libraries developed by MITRE and security community