Security●●Solid
Cloud-audit – AWS scanner that chains findings into attack paths
Correlates AWS findings into attack chains with Terraform fix scripts.
Solve My ProblemSlick
gebalamariusz
312mo ago
Back to browse
JVBar CIS Benchmark scanner and remediation script generator
by sandadze·Feb 21, 2026·2 points·0 comments
AI Analysis
●●●BangerSolve My ProblemShip ItSlick
Turns tedious 50-page CIS PDFs into 60-second compliance scores with runnable remediation scripts.
Strengths
- •Removes toil from a painful, repetitive task (manual CIS audits)—25-year veteran's genuine pain point solved.
- •Read-only audit script + in-browser analysis = transparent, trustworthy flow with no blind data storage.
- •Generates actionable PowerShell with rollback commands and plain-English impact notes, reducing risk vs. manual fixes.
Weaknesses
- •Currently Windows-only (roadmap mentions AD/ESXi/Azure but not shipped); Linux/macOS administrators can't use this yet.
- •Pricing model ties value to scan volume, not users—teams managing 100+ servers may balk at per-month tiers.
Category
Target Audience
Windows Server administrators, cybersecurity engineers, and enterprise IT teams managing compliance audits.
Similar To
CIS-CAT Pro (official CIS tool, expensive and slower) · Nessus (broader scanner, overkill for CIS-only use) · Qualys VMDR (compliance scanning at enterprise scale)
Post Description
I spent 25 years as an enterprise IT admin and cybersecurity
engineer. In that time I've manually worked through CIS Benchmark
compliance on Windows Server more times than I want to count —
open the PDF, check each control in gpedit/secedit/registry, write
remediation scripts by hand. Days of work per server, every time.
I built JVBar to automate both halves: the assessment and the remediation.
How it works: - A read-only PowerShell script (Get-* cmdlets + secedit /export, no writes) collects the server config - The engine compares it against 50 CIS Benchmark controls for Windows Server 2022/2025 and scores compliance 0-100 - For each failed control it generates a remediation script with rollback commands and a plain-English impact note
Currently covers Windows Server 2019, 2022, 2025 and Windows 11. More controls and platforms (Active Directory, VMware ESXi, Azure) on the roadmap.
Pricing: Free tier (3 scans/day), $29/mo Pro (unlimited + remediation scripts), $99/mo Team. 90% off for first 20 customers.
The audit script source will be on GitHub shortly.
Similar Projects
Security●●Solid
A simple CLI to check CI/CD compliance and project governance in GitLab
Open-source policy enforcement for GitLab CI where Enterprise features usually cost extra.
Niche GemSolve My ProblemShip It
coconux
402mo ago
Security●●Solid
Mcpsec-A multi-agent SEC gate for MCP toolchains (scan →harden →rescan)
MCP-specific security scanning with LLM-powered attack simulation, but assumes MCP adoption maturity that doesn't exist yet.
Big BrainBold Bet
Yuvraj_exe
103mo ago
Developer Tools●●●Banger
Ottr – one-click human approval links for scripts, CI, and AI agents
One-click approval without dashboards or auth—genuinely fills the human-in-loop gap.
Solve My ProblemWizardryNiche Gem
ed1ted
203mo ago
Developer Tools●Mid
Free website accessibility scanner – EAA/Ada compliance check
Axe-core wrapper with AI fix suggestions when WAVE and Lighthouse already exist.
Ship It
scarybeard
101mo ago
SaaS●●Solid
I built a compliance scanner that flags WCAG GDPR and FTC risks in mins
Bundles page-level WCAG checks, script/form detection for privacy gaps, AI-generated policy drafts and heuristic scanning of marketing copy into one agency-friendly flow. Fast report generation and white-label/partner features are smart business moves — the real question is signal quality (false positives) and how well the AI rules survive real-world edge cases.
Niche GemSlickSolve My Problem
CraftyGuru
203mo ago