Packages
BASIC — $25 USDT
"Essential Hardening"
────────────────────────────────────
✓ Non-root sudo user creation
✓ SSH key-based authentication
(password login fully disabled)
✓ SSH port change + brute-force lockout
✓ UFW/iptables firewall configuration
(only necessary ports open)
✓ Fail2ban intrusion prevention
✓ Automatic security updates enabled
✓ PDF report of all changes made
⏱ Delivery: 1 day
──────────────────────────────────────────
STANDARD — $45 USDT
"Full Hardening"
────────────────────────────────────
Everything in Basic, plus:
✓ Kernel-level hardening (sysctl tuning)
✓ Removal of unnecessary services
and attack surface reduction
✓ Lynis security audit + full report
✓ Shared memory hardening
✓ Core dump restrictions
✓ ptrace scope limitation
✓ 3-day post-delivery support
⏱ Delivery: 2 days
──────────────────────────────────────────
PREMIUM — $70 USDT
"Advanced Hardening + Monitoring"
────────────────────────────────────────
Everything in Standard, plus:
✓ Port knocking setup (stealth access)
✓ Intrusion detection (Auditd)
✓ Log monitoring and alerting
✓ Grafana/Netdata basic dashboard
✓ Two-factor SSH authentication (2FA)
✓ Full security checklist documentation
✓ 7-day post-delivery support
⏱ Delivery: 3 days
The moment a Linux VPS goes online, automated bots
start probing it — testing for default passwords,
open ports, and misconfigured services. A default
install is not a secure install.
━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
🛠 WHAT I HARDEN
━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
AUTHENTICATION & ACCESS:
- Non-root sudo user creation
- SSH key-based authentication
(password login fully disabled)
- SSH port change from default 22
- Brute-force lockout via Fail2ban
- Optional: Two-factor SSH (2FA)
FIREWALL & NETWORK:
- UFW/iptables firewall
(only required ports open)
- IPv6 hardening or disable
- Shared memory restrictions
- Kernel parameters via sysctl
(IP spoofing, redirects, ICMP)
SYSTEM REDUCTION:
- Removal of unused packages
and unnecessary services
- Core dump restrictions
- ptrace scope limitation
- Attack surface minimization
MONITORING & AUDITING:
- Lynis full security audit + report
- Auditd intrusion detection (Premium)
- Log monitoring and alerting (Premium)
- Port knocking — stealth access (Premium)
━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
✅ SUPPORTED SYSTEMS & PROVIDERS
━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
Operating Systems:
- Ubuntu 20.04 / 22.04 / 24.04 LTS
- Debian 11 / 12
- CentOS / AlmaLinux / Rocky Linux
Cloud & VPS Providers:
- DigitalOcean
- AWS (Lightsail / EC2)
- Google Cloud Platform (GCP)
- Microsoft Azure
- Oracle Cloud (incl. Always Free tier)
- Kamatera
- Hetzner / Contabo / Vultr / Linode
- OVHcloud
- Any KVM-based VPS with SSH root access
━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
📦 WHAT YOU RECEIVE
━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
- Full hardening executed remotely via SSH
- PDF documentation of every change made
- Lynis audit report (Standard & Premium)
- Post-delivery support per package tier
