Cloud Hardening Guide

A period-authentic, hand-written reference for hardening workloads across the major cloud providers. Every page is a self-contained static HTML document — no build step, no framework, no JavaScript required to read the content. The site spans 37 pages: a General section covering cross-cutting principles, plus four provider sections (AWS, Azure, GCP, OCI), each broken down into six security domains.

Controls are mapped against the major compliance frameworks — CIS Foundations Benchmarks (AWS, Azure, GCP, OCI), NIST SP 800-53 rev5, and ISO 27001:2022 / 27017:2015 — with explicit benchmark version pinning so the guidance can be audited against a known baseline. Each control carries a threat-model box, CLI and infrastructure-as-code remediation, and a compliance-mapping table.

The visual design is deliberately skeuomorphic and period-authentic: glossy gradients, beveled buttons, sticky sidebars. The intent is a reference that reads as if it were written by a security engineer who has seen enough trend churn to prefer durable HTML over JavaScript frameworks.

Sections

• General — shared responsibility, threat modelling, compliance frameworks, methodology, and provider-agnostic domain principles
• AWS — Amazon Web Services hardening across IAM, Network, Data, Logging, Workloads, and Incident Response
• Azure — Microsoft Azure hardening across the six security domains
• GCP — Google Cloud Platform hardening across the six security domains
• OCI — Oracle Cloud Infrastructure hardening across the six security domains

This page is a Phase 2 stub. Real landing-page content arrives in later phases.