Awesome Open Source
Search results for amazon web services security
644 search results found
Simple and flexible tool for managing secrets
Prowler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more.
My Arsenal Of Aws Security Tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
DevOps resources - Linux, Jenkins, AWS, SRE, Prometheus, Docker, Python, Ansible, Git, Kubernetes, Terraform, OpenStack, SQL, NoSQL, Azure, GCP
Security scanner for your Terraform code
Multi-Cloud Security Auditing Tool
CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
Use SQL to instantly query your cloud services (AWS, Azure, GCP and more). Open source CLI. No DB required.
Ultimate DevSecOps library
Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
Cloud Security Posture Management (CSPM)
Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy 🍑🍆
StreamAlert is a serverless, realtime data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using datasources and alerting logic you define.
Repository for BLESS, an SSH Certificate Authority that runs as a AWS Lambda function
CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
IAM Least Privilege Policy Generator
Aws Well Architected Labs
Hands on labs and code to help you learn, measure, and build using architectural best practices.
Create On Demand Disposable OpenVPN Endpoints on AWS.
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
Security auditing tool for AWS environments
Repository for the Lemur Certificate Manager
Automating situational awareness for cloud penetration tests.
Awesome Cloud Security
🛡️ Awesome Cloud Security Resources ⚔️
Metlo is an open-source API security platform.
Resoto creates an inventory of your cloud ☁️, provides deep visibility 👀, and reacts to changes in your infrastructure 🌐.
Stratus Red Team
☁️ ⚡️ Granular, Actionable Adversary Emulation for the Cloud
BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.
Amazon EKS Distro (EKS-D) is a Kubernetes distribution based on and used by Amazon Elastic Kubernetes Service (EKS) to create reliable and secure Kubernetes clusters.
Open source cloud-native security lake platform (SIEM alternative) for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
Guard offers a policy-as-code domain-specific language (DSL) to write rules and validate JSON- and YAML-formatted data such as CloudFormation Templates, K8s configurations, and Terraform JSON plans/configurations against those rules. Take this survey to provide feedback about cfn-guard: https://amazonmr.au1.qualtrics.com/jfe/form/SV_bpy
Linting tool for CloudFormation templates
PacBot (Policy as Code Bot)
Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.
AWS Least Privilege for Distributed, High-Velocity Deployment
Terraform Aws Secure Baseline
Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.
SSH-based "VPN for poors"
Breaking And Pwning Apps And Servers Aws Azure Training
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
Awesome Aws Security
Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
Requests Ip Rotator
A Python library to utilize AWS API Gateway's large IP pool as a proxy to generate pseudo-infinite IPs for web scraping and brute forcing.
Regula checks infrastructure as code templates (Terraform, CloudFormation, k8s manifests) for AWS, Azure, Google Cloud, and Kubernetes security and compliance using Open Policy Agent/Rego
The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent.
Aws Security Reference Architecture Examples
Example solutions demonstrating how to implement patterns within the AWS Security Reference Architecture guide using CloudFormation and Customizations for AWS Control Tower.
ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks
Vulnerable app with examples showing how to not use secrets
A command-line tool to get valuable information out of AWS CloudTrail
Aws Vpn Server Setup
Setup your own private, secure, free* VPN on the Amazon AWS Cloud in 10 minutes. CloudFormation
Aws Secure Environment Accelerator
The AWS Secure Environment Accelerator is a tool designed to help deploy and operate secure multi-account, multi-region AWS environments on an ongoing basis. The power of the solution is the configuration file which enables the completely automated deployment of customizable architectures within AWS without changing a single line of code.
Aws Security Viz
Visualize your aws security groups.
Cloud Security Remediation Guides
Security Remediation Guides
Open Source Cloud Security
Build your own privacy and security focused Android OS in the cloud.
Allow startup developers to ship to production on day 1
Terraform Aws Security Group
Terraform module which creates EC2-VPC security groups on AWS 🇺🇦
Aws Serverless Security Workshop
In this workshop, you will learn techniques to secure a serverless application built with AWS Lambda, Amazon API Gateway and RDS Aurora. We will cover AWS services and features you can leverage to improve the security of a serverless applications in 5 domains: identity & access management, code, data, infrastructure, logging & monitoring.
Awesome Cloud Security
Curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.
A Blazing fast Security Auditing tool for Kubernetes
honeyλ - a simple, serverless application designed to create and monitor fake HTTP endpoints (i.e. URL honeytokens) automatically, on top of AWS Lambda and Amazon API Gateway
Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.
A curated list of awesome self-hosted GitHub Action runners in a large comparison matrix
Siem On Amazon Opensearch Service
A solution for collecting, correlating and visualizing multiple types of logs to help investigate security incidents.
Identify hardcoded secrets in static structured text
Aardvark is a multi-account AWS IAM Access Advisor API
Connect Falco to your ecosystem
Aws Security Automation
Collection of scripts and resources for DevSecOps and Automated Incident Response Security
Aws Security Assessment Solution
An AWS tool to help you create a point in time assessment of your AWS account using Prowler.
Enforce ownership and data security within AWS
Parse and Process AWS IAM Policies, Statements, ARNs, and wildcards.
AWS CloudSaga - Simulate security events in AWS
Aws Security Workshops
A collection of the latest AWS Security workshops
Library and CLI tool for analysing CloudFormation templates and check them for security compliance.
Aws Security Survival Kit
Bare minimum AWS Security Alerting
Serverless Aws Secrets
🛵 Serverless plugin that reads environment variables and replaces secrets using AWS Secrets Manager 🛵
Pike is a tool for determining the permissions or policy required for IAC code
OWASP Domain Protect - prevent subdomain takeover
AWS Serverless Security
Steampipe Mod Aws Compliance
Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Steampipe.
Smallest Secured Golang Docker Image
Create the smallest and secured golang docker image based on scratch
Open Cloud Security Posture Management Engine
Graph-based security analysis for everyone
Command line tool to ease aws cli authentication against ADFS (multi factor authentication with active directory)
🦉🔎 A simple tool to audit your AWS/GCP infrastructure for misconfiguration or potential security issues with plugins integration
a vault client, but for containers and servers.
A UNIX security auditing tool based on several security frameworks
A honey token manager and alert system for AWS.
A tool for identifying misconfigured CloudFront domains
The Open-Source AWS Cyber Range
Scans your AWS cloud resources and generates reports. Check out free hosted version:
AWS Identity and Access Management Visualizer and Anomaly Finder
Awesome Serverless Security
A curated list of awesome serverless security resources such as (e)books, articles, whitepapers, blogs and research papers.
Aws Security Toolbox
AWS Security Tools (AST) in a simple Docker container. 📦
Expand env variables from AWS Parameter Store
Security Stack Mappings
This project empowers defenders with independent data on which native security controls of leading technology platforms are most useful in defending against the adversary TTPs they care about.
AWS云平台 AccessKey 泄漏利用工具
OpenSource, frictionless and secure way to share and manage app secrets across teams.
Aws Csa 2017
Study Notes for AWS Certified Solutions Architect Associate - 2017
open source, cloud-native, graph-based asset inventory
✨ Securely connect to RDS, Elasticache, and other AWS resources in VPCs with no idle cost
Aws Auto Remediate
Open source application to instantly remediate common security issues through the use of AWS Config
Security Vulnerabilities (12,341)
Laravel Security (11,580)
Php Security (10,611)
Python Amazon Web Services (7,907)
Amazon Web Services Lambda Functions (7,466)
Amazon Web Services Terraform (4,243)
Amazon Web Services Serverless (4,002)
Python Security (3,710)
Amazon Web Services Hcl (3,473)
Golang Amazon Web Services (3,104)
1-100 of 644 search results
Follow Us On Twitter
Copyright 2018-2023 Awesome Open Source. All rights reserved.