• Configures a Hostname
• Reconfigures the Timezone
• Updates the entire System
• Creates a New Admin user so you can manage your server safely without the need of doing remote connections with root.
• Generates Secure RSA Keys, so that remote access to your server is done exclusive from you local pc and no Conventional password
• Configures, Optimize and secures the SSH Server
• Configures IPTABLES Rules to protect the server from common attacks
• Protects the server against Brute Force attacks by installing a configuring fail2ban
• Stop Portscans by blocking intrusive IP via IPTABLES using portsentry
• Install, configure, and optimize MySQL
• Install the Apache Web Server
• Install, configure and secure PHP
• Secure Apache via configuration file and with installation of the Modules ModSecurity, ModEvasive, Qos and SpamHaus
• Installs RootKit Hunter
• Secures Root Home and Grub Configuration Files
• Installs Unhide to help Detect Malicious Hidden Processes
• Installs Tiger, A Security Auditing and Intrusion Prevention system
• Restrict Access to Apache Config Files
• Disable Compilers
• Creates Daily Cron job for System Updates
• Kernel Hardening via sysctl configuration File

Recently Added Hardening Steps

• Added PHP Suhosin Installation to protect PHP Code and Core for Known and Unknown flaws
• Use of Function for code execution customization
• Distro Selection Menu
• Function Selection Menu
• Deployment Selection Menu (LAMP, LEMP, Reverse Proxy)
• Added LEMP Deployment with ModSecurity
• Added /tmp folder Hardening
• Added PSAD IDS installation
• Added Process Accountingcd ..
• Added Unattended Upgrades
• Added MOTD and Banners for Unauthorized access
• Disable USB Support for Improved Security (Optional)
• Restrictive Default UMASK
• Added Additional Hardening Steps

To Run the tool

ChangeLog