SecureBaseline Cloud
SecureBaseline Cloud is a Hardening as a Service platform that automates CIS (Center for Internet Security) compliance scanning and hardening for Linux servers.
Key Features
- Compliance Scanning - automated server assessment against CIS benchmarks using OpenSCAP
- Security Hardening - application of CIS configurations to servers using Ansible automation
- Host Management - centralized management of Linux servers via SSH
- Task Scheduling - automation of scanning and hardening using cron schedules
- AI Diagnostics - analysis of hardening errors using YandexGPT
- Reporting - detailed reports in HTML, PDF, CSV and JSON formats
- Audit Logging - logging of all user actions and system events
Supported Operating Systems
| Family | Distributions |
|---|
| Ubuntu | Ubuntu 20.04, 22.04 |
| Debian | Debian 11, 12 |
| RHEL | RHEL 8/9, CentOS 8, AlmaLinux 8, Rocky 8 |
| Oracle | Oracle Linux 8 |
| Amazon | Amazon Linux 2 |
CIS Profiles
| Profile | Description | Impact |
|---|
| CIS Level 1 - Server | Basic security hardening | Minimal service impact |
| CIS Level 2 - Server | Enhanced security hardening | May affect some services |
| CIS Level 1 - Workstation | Basic workstation security | For desktop systems |
| CIS Level 2 - Workstation | Enhanced workstation security | For high-security desktops |
Navigation
| Section | Description |
|---|
| Dashboard | Overview of infrastructure security posture |
| Hosts | Server and credential management |
| Compliance | Compliance scanning and reports |
| Jobs | Hardening job history |
| Schedules | Automated tasks |
| AI | Chat and YandexGPT settings |
| Audit | Security event logs |
| Settings | System configuration |