Cis

As part of my infrastructure hardening and automation efforts, I built a CIS-hardened Debian 12 AMI using Packer and the ansible-lockdown/DEBIAN12-CIS Ansible role. For reference or reuse, I’ve made the AMI publicly available: AMI ID: ami-0ded45c1c47569084 Region: us-east-1 This post documents how I did it from scratch. 🛠️ Tools Used Packer Ansible Ansible Lockdown Role AWS EC2 Debian 12 (Official AMI) 📁 Project Structure cis-debian-ami/ ├── packer.pkr.hcl ├── ansible/ │ ├── playbook.yml │ └── roles/ │ └── DEBIAN12-CIS/ # added via git submodule To add the Ansible role: ...