I just take a look at the shared file. Mainly it's a checklist with different items, each item contains an "audit" and "remediation" sections, you can access to the instance via SSH and execute the "audit" commands if the result is not the expected one you can execute the "remediation" actions if you consider opportune. Take into account that some paths, file locations, etc can be different from a standard installation, you can find all the information in the documentation link share some comments above.
At this time we don't have an automated tool to provide this kind of audits.
Carlos R. Hernández