Aws Security Toolbox
| Project Name | Stars | Downloads | Repos Using This | Packages Using This | Most Recent Commit | Total Releases | Latest Release | Open Issues | License | Language |
|---|---|---|---|---|---|---|---|---|---|---|
| Portainer | 25,019 | 1 | a day ago | 78 | April 21, 2021 | 1,091 | zlib | Go | ||
| Making Docker and Kubernetes management easy. | ||||||||||
| Trivy | 16,738 | 25 | 21 hours ago | 176 | September 16, 2022 | 375 | apache-2.0 | Go | ||
| Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more | ||||||||||
| Slim | 16,353 | 2 days ago | 156 | apache-2.0 | Go | |||||
| Slim(toolkit): Don't change anything in your container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source) | ||||||||||
| Authelia | 15,914 | 1 | a day ago | 34 | September 19, 2022 | 108 | apache-2.0 | Go | ||
| The Single Sign-On Multi-Factor portal for web apps | ||||||||||
| Hydra | 13,886 | 8 | 2 days ago | 1 | May 08, 2019 | 71 | apache-2.0 | Go | ||
| OpenID Certified™ OpenID Connect and OAuth Provider written in Go - cloud native, security-first, open source API security for your infrastructure. SDKs for any language. Works with Hardware Security Modules. Compatible with MITREid. | ||||||||||
| Labs | 11,145 | 23 days ago | 137 | apache-2.0 | PHP | |||||
| This is a collection of tutorials for learning how to use Docker with various tools. Contributions welcome. | ||||||||||
| Rustscan | 9,432 | 25 days ago | 17 | April 27, 2022 | 117 | gpl-3.0 | Rust | |||
| 🤖 The Modern Port Scanner 🤖 | ||||||||||
| Docker Bench Security | 8,261 | 14 days ago | 13 | apache-2.0 | Shell | |||||
| The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production. | ||||||||||
| Imgproxy | 7,014 | 7 days ago | 112 | August 22, 2022 | 66 | mit | Go | |||
| Fast and secure standalone server for resizing and converting remote images | ||||||||||
| Devops Resources | 6,767 | 5 days ago | 12 | Groovy | ||||||
| DevOps resources - Linux, Jenkins, AWS, SRE, Prometheus, Docker, Python, Ansible, Git, Kubernetes, Terraform, OpenStack, SQL, NoSQL, Azure, GCP | ||||||||||
AWS Security Toolbox (AST) 🔒
This toolbox will bring to you all necessary apps and tooling as a simple portable and preinstalled Docker container for SecOps on AWS, especially for auditing and assessments purpose.
This will reduce the overhead and the headache of installation these tools and dependencies.
Included Tools
Getting Started
Optional (host machine)
Requirements
- docker macOS or Linux
-
awscliinstalled & configured - create
.envfile before building your Docker image locally (see .env.example) to set yourDEFAULT_AWS_REGIONandPROFILE_NAME(for aws-vault)
Usage
Clone the repository:
$ git clone https://github.com/z0ph/aws-security-toolbox.git
There is two options to use this toolbox,
- Option #1 (Interactive), you are using local
awscliwith~/.aws/credentialspopulated. - Option #2 (
aws-vault), you want to use your localaws-vaultinstallation.
Info: Working directory within the container: /opt/secops
Option 1 (Interactive)
$ ./ast.sh login
When you are logged into the shell of the container in interactive mode (-it), you will be able to perform your audit/assessment with confidence thanks to pre-populated tools.
Example:
$ ./opt/secops/prowler/prowler -b | ansi2html -la > /tmp/prowler-report.html
nb: /tmp is mapped to your own (host machine) /tmp folder.
Option 2 (aws-vault)
$ ./ast.sh exec /opt/secops/prowler/prowler -b -s > report-prod.txt
nb: if you are not using default aws-vault profile name, please modify options in ast.sh
Optional
if you want to build your own container locally to get latest updates from tools maintainers, run the following command.
$ make build
License
This project is licensed under the MIT License - see the LICENSE file for details
Authors
- Victor GRENU - Initial work - zoph.io
