Skip to content
@ansible-lockdown

Ansible Lockdown

Lockdown is a security baseline automation project sponsored by Tyto Athene.
README.md

Welcome to Ansible Lockdown

Org Stars Lockdown_followers Discord_active

Part of the Lockdown Suite by
MindPoint Group

Based upon the following products

Remediation Roles Audit Profiles
Ansible by RedHat Github hosted goss

Ansible

by RedHat

Goss

Go Server Spec

What is it?

Based upon industry recognized benchmarks and best practices, using leading products to enable highly adjustable configurations to bring your systems/platforms into security compliance.

  • Open Source (MIT licensed)
    • Community supported as standard
    • Enterprise support available
  • Configuration-as-code
    • Assist in bringing your systems/platform into compliance through the use of Ansible
    • Audit your current system/platform using Goss
  • Highly configurable to work with your systems

Content

CIS DISA-STIG
CIS Disa STIG
CIS Repos STIG Repos

Looking for support?

Useful Links

Repositories

CIS

Links
CIS-Linux
CIS-Windows
CIS-Platform
CIS-Applications

CIS-Linux

OS Remediate Audit
Amazon2 Amazon2-CIS Amazon2-CIS-Audit
Amazon2023 Amazon2023-CIS Amazon2023-CIS-Audit
DEBIAN11 DEBIAN11-CIS DEBIAN11-CIS-Audit
DEBIAN12 DEBIAN12-CIS DEBIAN12-CIS-Audit
RHEL8 RHEL8-CIS RHEL8-CIS-Audit
RHEL9 RHEL9-CIS RHEL9-CIS-Audit
RHEL10 Static Badge Static Badge
SUSE15 SUSE15-CIS SUSE15-CIS-Audit
UBUNTU18 UBUNTU18-CIS UBUNTU18-CIS-Audit
UBUNTU20 UBUNTU20-CIS UBUNTU20-CIS-Audit
UBUNTU22 UBUNTU22-CIS UBUNTU22-CIS-Audit
UBUNTU24 UBUNTU24-CIS UBUNTU24-CIS-Audit

CIS-Windows

OS Remediate Audit
Windows-10 Windows-10-CIS Static Badge
Windows-11 Windows-11-CIS Static Badge
Windows-2016 Windows-2016-CIS Windows-2016-CIS-Audit
Windows-2019 Windows-2019-CIS Windows-2019-CIS-Audit
Windows-2022 Windows-2022-CIS Static Badge
Windows-2025 Windows-2025-CIS Static Badge

CIS-Platform

OS Remediate Audit
Cisco-IOS-L2S Cisco-IOS-L2S N/A
AWS-Foundations AWS-Foundations N/A
Azure-CIS Azure-CIS N/A

CIS-Applications

Application Remediate Audit
Apache-2.4 Apache-2.4-CIS N/A
Postgres-12 Postgres-12-CIS N/A
Kubernetes1.6.1 Kubernetes1.6.1-CIS N/A

CIS-Archived

OS
RHEL7-CIS

STIG

Links
STIG-Linux
STIG-Windows
STIG-Applications
STIG-Archived

STIG-Linux

OS Remediate Audit
RHEL8 RHEL8-STIG RHEL8-STIG-Audit
RHEL9 RHEL9-STIG RHEL9-STIG-Audit
UBUNTU18 UBUNTU18-STIG UBUNTU18-STIG-Audit
UBUNTU20 UBUNTU20-STIG N/A
UBUNTU22 UBUNTU22-STIG UBUNTU22-STIG-Audit
UBUNTU24 UBUNTU24-STIG UBUNTU24-STIG-Audit

STIG-Windows

OS Remediate Audit
Windows-10 Windows-10-STIG N/A
Windows-11 Windows-11-STIG N/A
Windows-2016 Windows-2016-STIG N/A
Windows-2019 Windows-2019-STIG N/A
Windows-2022 Windows-2022-STIG N/A
Windows-2025 Static Badge N/A

STIG-Applications

Application Remediate Audit
Apache-2.4-STIG Apache-2.4-STIG N/A
Cisco-IOS-L2S Cisco-IOS-L2S-STIG N/A
Windows-Advanced-Firewall WinFWADV-STIG WinFWADV-STIG-Audit
KUBERNETES-STIG KUBERNETES-STIG N/A

STIG-Archived

OS
RHEL5-STIG
RHEL6-STIG
RHEL7-STIG
Windows-2008R2-Member-Server-STIG
Windows-2012-Member-Server-STIG
Windows-2012-Domain-Controller-STIG
Application
Postgres-9-STIG

Pinned Loading

  1. RHEL7-CIS RHEL7-CIS Public

    Automated CIS Benchmark Compliance Remediation for RHEL 7 with Ansible

    YAML 486 300

  2. RHEL7-STIG RHEL7-STIG Public

    Automated STIG Benchmark Compliance Remediation for RHEL 7 with Ansible

    YAML 283 147

  3. RHEL8-CIS RHEL8-CIS Public

    Automated CIS Benchmark Compliance Remediation for RHEL 8 with Ansible

    YAML 322 187

  4. UBUNTU20-CIS UBUNTU20-CIS Public

    Automated CIS Benchmark Compliance Remediation for Ubuntu 20 with Ansible

    YAML 181 70

  5. RHEL9-CIS RHEL9-CIS Public

    Automated CIS Benchmark Compliance Remediation for RHEL 9 with Ansible

    YAML 189 137

  6. Windows-2019-CIS Windows-2019-CIS Public

    Automated CIS Benchmark Compliance Remediation for Windows Server 2019 with Ansible

    YAML 146 75

Repositories

Showing 10 of 82 repositories
  • github_windows_IaC Public

    💻 Workflow Data For Github Actions & Windows Server Testing of Lockdown Enterprise Content 💻

    ansible-lockdown/github_windows_IaC’s past year of commit activity
    PowerShell 2 MIT 3 0 0 Updated Jan 5, 2026
  • github_linux_IaC Public

    💻 Workflow Data For Github Actions & Linux Server Testing of Lockdown Enterprise Content 💻

    ansible-lockdown/github_linux_IaC’s past year of commit activity
    HCL 5 MIT 1 0 0 Updated Jan 5, 2026
  • Windows-2019-CIS Public

    Automated CIS Benchmark Compliance Remediation for Windows Server 2019 with Ansible

    ansible-lockdown/Windows-2019-CIS’s past year of commit activity
    YAML 146 MIT 75 5 1 Updated Jan 5, 2026
  • RHEL8-STIG Public

    Automated STIG Benchmark Compliance Remediation for RHEL 8 with Ansible

    ansible-lockdown/RHEL8-STIG’s past year of commit activity
    YAML 116 MIT 67 3 0 Updated Jan 5, 2026
  • DEBIAN12-CIS Public

    Automated CIS Benchmark Compliance Remediation for Debian 12 with Ansible

    ansible-lockdown/DEBIAN12-CIS’s past year of commit activity
    YAML 80 MIT 21 1 0 Updated Jan 5, 2026
  • UBUNTU22-CIS Public

    Automated CIS Benchmark Compliance Remediation for Ubuntu 22 with Ansible

    ansible-lockdown/UBUNTU22-CIS’s past year of commit activity
    YAML 242 MIT 103 0 0 Updated Jan 5, 2026
  • UBUNTU24-CIS Public

    Automated CIS Benchmark Compliance Remediation for Ubuntu 24 with Ansible

    ansible-lockdown/UBUNTU24-CIS’s past year of commit activity
    YAML 135 MIT 41 15 4 Updated Jan 5, 2026
  • .github Public

    🏢 Mindpoint Group - A Tyto Athene Company - Ansible Lockdown Landing Page 🏢

    ansible-lockdown/.github’s past year of commit activity
    5 2 0 0 Updated Jan 5, 2026
  • MPG-AL-READTHEDOCS Public

    📖 Mindpoint Group - A Tyto Athene Company - Ansible Lockdown ReadTheDocs 📖

    ansible-lockdown/MPG-AL-READTHEDOCS’s past year of commit activity
    4 MIT 1 0 0 Updated Jan 5, 2026
  • RHEL9-CIS Public

    Automated CIS Benchmark Compliance Remediation for RHEL 9 with Ansible

    ansible-lockdown/RHEL9-CIS’s past year of commit activity
    YAML 189 MIT 137 4 2 Updated Jan 5, 2026
View all repositories