Hi! I built a tool (https://github.com/0xhsn/macbonk) that automates all actionable recommendations from this guide.
It currently implements 62 hardening steps across 11 categories (including firewall, DNS, metadata cleanup, SSH, and general system hardening). Users can go through each step interactively, choosing to apply or skip items as they go.
Key features:
- Interactive step-by-step walkthrough
--dry-run mode to preview changes safely--yolo flag to run everything non-interactively--category flag to target specific areas- Automatic backups before modifying configs
- Command validation to prevent dangerous patterns
- Session resume support if interrupted
It’s built with Ink and Bun, and works on any macOS version with a single command.
Would you be open to adding it to the README? I’d be happy to open a PR if that works for you.
Hi! I built a tool (https://github.com/0xhsn/macbonk) that automates all actionable recommendations from this guide.
It currently implements 62 hardening steps across 11 categories (including firewall, DNS, metadata cleanup, SSH, and general system hardening). Users can go through each step interactively, choosing to apply or skip items as they go.
Key features:
--dry-runmode to preview changes safely--yoloflag to run everything non-interactively--categoryflag to target specific areasIt’s built with Ink and Bun, and works on any macOS version with a single command.
Would you be open to adding it to the README? I’d be happy to open a PR if that works for you.