From 5e869cd4a1513f9c44ad72b62027578f1e423a34 Mon Sep 17 00:00:00 2001 From: jbanic Date: Tue, 11 Oct 2022 11:55:59 +0200 Subject: [PATCH] Update 'Guidance.md' --- Guidance.md | 76 +++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 76 insertions(+) diff --git a/Guidance.md b/Guidance.md index 50ba7ee..dec701c 100644 --- a/Guidance.md +++ b/Guidance.md @@ -4,7 +4,83 @@ ### FIRST Best Practice Guide Library (BPGL) +- Link: https://www.first.org/resources/guides/ +### NSA Cybersecurity Advisories & Guidance + +- Link: https://www.nsa.gov/Press-Room/Cybersecurity-Advisories-Guidance/ + +### Australian Cyber Security Center Publications + +- Link: https://www.cyber.gov.au/acsc/view-all-content/publications + +### The Practical Linux Hardening Guide + +- Git repo: https://git.csec.ba/CSEC_PUBLIC/the-practical-linux-hardening-guide + +### How To Secure A Linux Server + +- Git repo: https://git.csec.ba/CSEC_PUBLIC/How-To-Secure-A-Linux-Server + +### RHEL Server/Workstation Hardening Guide + +- Link: https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html-single/security_guide/index + +### CentOS 7 Server Hardening Guide + +- Link: https://www.lisenet.com/2017/centos-7-server-hardening-guide/ + +### SUSE Linux Enterprise Server - Best practices + +Link: https://documentation.suse.com/sles/12-SP4/#redirectmsg + +### Microsoft - Windows security baselines + +- Link: https://learn.microsoft.com/en-us/windows/security/threat-protection/windows-security-configuration-framework/windows-security-baselines + +### Windows Server Security documentation + +Link: https://learn.microsoft.com/en-us/windows-server/security/security-and-assurance + +### Hardening Microsoft Windows 10, version 21H1, Workstations + +- Link: https://www.cyber.gov.au/acsc/view-all-content/publications/hardening-microsoft-windows-10-version-21h1-workstations + +### Awesome Windows Domain Hardening + +- Link: https://github.com/PaulSec/awesome-windows-domain-hardening + +### Best Practices for Securing Active Directory + +- Link: https://learn.microsoft.com/en-us/windows-server/identity/ad-ds/plan/security-best-practices/best-practices-for-securing-active-directory + +### NSA - Harden Network Devices + +- Link: https://media.defense.gov/2020/Aug/18/2002479461/-1/-1/0/HARDENING_NETWORK_DEVICES.PDF + +### NSA - A Guide to Border Gateway Protocol (BGP) Best Practices + +- Link: https://www.nsa.gov/portals/75/documents/what-we-do/cybersecurity/professional-resources/ctr-guide-to-border-gateway-protocol-best-practices.pdf?v=1 + +### Guidelines on Firewalls and Firewall Policy + +- Link: https://www.nist.gov/publications/guidelines-firewalls-and-firewall-policy + +### Iptables Essentials: Common Firewall Rules and Commands + +- Git repo: https://git.csec.ba/CSEC_PUBLIC/iptables-essentials + +### SQL Server Hardening Best Practices + +- Link: https://www.netwrix.com/sql_server_security_best_practices.html + +### Apache HTTP Server documentation - Security Tips + +- Git repo: https://git.csec.ba/CSEC_PUBLIC/awesome-security-hardening#user-content-apache-http-server + +### Apache Tomcat 9 Security Considerations + +- Link: https://tomcat.apache.org/tomcat-9.0-doc/security-howto.html ## Tools