This project is based on Python 3 to develop a set of security baseline detection and reinforcement tools for commonly used mainstream operating systems such as Windows 7, Windows 10, Windows server2008, Windows server2003, Windows server2012, Ubuntu, Centos, etc. The testing tools include but are not limited to functional testing, human-computer interaction interface testing, security testing, accuracy testing, etc.
The detection conditions of the system are based on the Operating System Security Baseline Specification, and the testing methods are collected and organized to achieve functions such as rule configuration, one click detection, one click repair, report generation, and report export.
When the detection is completed, the system security level can be rated, and corresponding rectification plans can be proposed for non-conforming items.
In previous operation and maintenance work, there were numerous baseline check items and servers, often requiring a lot of time for repeated troubleshooting from confirming the problem to handling it, and it was easy to miss. After building baseline security reinforcement and detection tools, the baseline security status of servers can be detected faster and more accurately, and targeted adjustments can be made, greatly improving the efficiency of security operation and maintenance. It is a practical auxiliary detection tool for production server security assurance work.