NoShitSecurity STONE open framework
STONE stands for Security, Telemetry, Operability, Nativity, Elasticity.
The NoShitSecurity Jurassic Jungle™ Interns will be the first to learn how to build using the STONE open framework, developed by NSS.
Security - The system is BREACH-ready
Telemetry - The system has extended detection and response
Operability - The system is fit for purpose and fit for use
Nativity - The system is cloud native
Elasticity - The system is highly available
The STONE framework relies upon the BREACH methodology developed by NSS last year.
Baseline REinforcement and Configuration Hardening
What does this mean? –> Get it to green.
Using CIS Hardened Images®️ alongside the vulnerability analysis tools included in Azure Security Center and configuration analysis and hardening tools like Lynis, we can start with a safer foundation to build from.
The term “Get it to green” is referring to the output of a Lynis scan.