Awesome Open Source

Programming Languages

Search results for amazon web services security

amazon-web-services x

644 search results found

Sops ⭐ 13,854

Simple and flexible tool for managing secrets

Prowler ⭐ 8,637

Prowler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more.

My Arsenal Of Aws Security Tools ⭐ 8,304

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

Devops Resources ⭐ 7,566

DevOps resources - Linux, Jenkins, AWS, SRE, Prometheus, Docker, Python, Ansible, Git, Kubernetes, Terraform, OpenStack, SQL, NoSQL, Azure, GCP

Tfsec ⭐ 6,258

Security scanner for your Terraform code

Scoutsuite ⭐ 5,673

Multi-Cloud Security Auditing Tool

Cloudmapper ⭐ 5,620

CloudMapper helps you analyze your Amazon Web Services (AWS) environments.

Steampipe ⭐ 5,578

Use SQL to instantly query your cloud services (AWS, Azure, GCP and more). Open source CLI. No DB required.

Devsecops ⭐ 4,857

Ultimate DevSecOps library

Security_monkey ⭐ 4,338

Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.

Terrascan ⭐ 4,223

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

Cloudsploit ⭐ 2,919

Cloud Security Posture Management (CSPM)

Privacy.sexy ⭐ 2,840

Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy 🍑🍆

Streamalert ⭐ 2,768

StreamAlert is a serverless, realtime data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using datasources and alerting logic you define.

Bless ⭐ 2,702

Repository for BLESS, an SSH Certificate Authority that runs as a AWS Lambda function

Cloudgoat ⭐ 2,192

CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool

Policy_sentry ⭐ 1,882

IAM Least Privilege Policy Generator

Aws Well Architected Labs ⭐ 1,864

Hands on labs and code to help you learn, measure, and build using architectural best practices.

Autovpn ⭐ 1,855

Create On Demand Disposable OpenVPN Endpoints on AWS.

Cloudsplaining ⭐ 1,790

Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.

Scout2 ⭐ 1,728

Security auditing tool for AWS environments

Lemur ⭐ 1,654

Repository for the Lemur Certificate Manager

Cloudfox ⭐ 1,551

Automating situational awareness for cloud penetration tests.

Awesome Cloud Security ⭐ 1,549

🛡️ Awesome Cloud Security Resources ⚔️

Metlo ⭐ 1,451

Metlo is an open-source API security platform.

Resoto ⭐ 1,439

Resoto creates an inventory of your cloud ☁️, provides deep visibility 👀, and reacts to changes in your infrastructure 🌐.

Stratus Red Team ⭐ 1,426

☁️ ⚡️ Granular, Actionable Adversary Emulation for the Cloud

Binaryalert ⭐ 1,301

BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.

Eks Distro ⭐ 1,280

Amazon EKS Distro (EKS-D) is a Kubernetes distribution based on and used by Amazon Elastic Kubernetes Service (EKS) to create reliable and secure Kubernetes clusters.

Matano ⭐ 1,186

Open source cloud-native security lake platform (SIEM alternative) for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS

Cloudformation Guard ⭐ 1,165

Guard offers a policy-as-code domain-specific language (DSL) to write rules and validate JSON- and YAML-formatted data such as CloudFormation Templates, K8s configurations, and Terraform JSON plans/configurations against those rules. Take this survey to provide feedback about cfn-guard: https://amazonmr.au1.qualtrics.com/jfe/form/SV_bpy

Cfn_nag ⭐ 1,105

Linting tool for CloudFormation templates

Pacbot ⭐ 1,104

PacBot (Policy as Code Bot)

Cs Suite ⭐ 1,071

Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.

Repokid ⭐ 1,055

AWS Least Privilege for Distributed, High-Velocity Deployment

Terraform Aws Secure Baseline ⭐ 1,048

Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.

Xiringuito ⭐ 1,001

SSH-based "VPN for poors"

Breaking And Pwning Apps And Servers Aws Azure Training ⭐ 885

Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!

Awesome Aws Security ⭐ 878

Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security

Requests Ip Rotator ⭐ 867

A Python library to utilize AWS API Gateway's large IP pool as a proxy to generate pseudo-infinite IPs for web scraping and brute forcing.

Regula checks infrastructure as code templates (Terraform, CloudFormation, k8s manifests) for AWS, Azure, Google Cloud, and Kubernetes security and compliance using Open Policy Agent/Rego

The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent.

Aws Security Reference Architecture Examples ⭐ 805

Example solutions demonstrating how to implement patterns within the AWS Security Reference Architecture guide using CloudFormation and Customizations for AWS Control Tower.

Electriceye ⭐ 794

ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks

Wrongsecrets ⭐ 789

Vulnerable app with examples showing how to not use secrets

Trailscraper ⭐ 745

A command-line tool to get valuable information out of AWS CloudTrail

Aws Vpn Server Setup ⭐ 735

Setup your own private, secure, free* VPN on the Amazon AWS Cloud in 10 minutes. CloudFormation

Aws Secure Environment Accelerator ⭐ 683

The AWS Secure Environment Accelerator is a tool designed to help deploy and operate secure multi-account, multi-region AWS environments on an ongoing basis. The power of the solution is the configuration file which enables the completely automated deployment of customizable architectures within AWS without changing a single line of code.

Aws Security Viz ⭐ 673

Visualize your aws security groups.

Cloud Security Remediation Guides ⭐ 655

Security Remediation Guides

Zeuscloud ⭐ 623

Open Source Cloud Security

Rattlesnakeos Stack ⭐ 556

Build your own privacy and security focused Android OS in the cloud.

Allow startup developers to ship to production on day 1

Terraform Aws Security Group ⭐ 508

Terraform module which creates EC2-VPC security groups on AWS 🇺🇦

Aws Serverless Security Workshop ⭐ 505

In this workshop, you will learn techniques to secure a serverless application built with AWS Lambda, Amazon API Gateway and RDS Aurora. We will cover AWS services and features you can leverage to improve the security of a serverless applications in 5 domains: identity & access management, code, data, infrastructure, logging & monitoring.

Awesome Cloud Security ⭐ 501

Curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.

Kubestriker ⭐ 500

A Blazing fast Security Auditing tool for Kubernetes

Honeylambda ⭐ 498

honeyλ - a simple, serverless application designed to create and monitor fake HTTP endpoints (i.e. URL honeytokens) automatically, on top of AWS Lambda and Amazon API Gateway

Aws Recon ⭐ 484

Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.

Awesome Runners ⭐ 469

A curated list of awesome self-hosted GitHub Action runners in a large comparison matrix

Siem On Amazon Opensearch Service ⭐ 459

A solution for collecting, correlating and visualizing multiple types of logs to help investigate security incidents.

Whispers ⭐ 457

Identify hardcoded secrets in static structured text

Aardvark ⭐ 454

Aardvark is a multi-account AWS IAM Access Advisor API

Falcosidekick ⭐ 452

Connect Falco to your ecosystem

Aws Security Automation ⭐ 442

Collection of scripts and resources for DevSecOps and Automated Incident Response Security

Aws Security Assessment Solution ⭐ 440

An AWS tool to help you create a point in time assessment of your AWS account using Prowler.

Cloud Inquisitor ⭐ 439

Enforce ownership and data security within AWS

Policyuniverse ⭐ 399

Parse and Process AWS IAM Policies, Statements, ARNs, and wildcards.

Aws Cloudsaga ⭐ 391

AWS CloudSaga - Simulate security events in AWS

Aws Security Workshops ⭐ 390

A collection of the latest AWS Security workshops

Cfripper ⭐ 376

Library and CLI tool for analysing CloudFormation templates and check them for security compliance.

Aws Security Survival Kit ⭐ 363

Bare minimum AWS Security Alerting

Serverless Aws Secrets ⭐ 357

🛵 Serverless plugin that reads environment variables and replaces secrets using AWS Secrets Manager 🛵

Pike is a tool for determining the permissions or policy required for IAC code

Domain Protect ⭐ 333

OWASP Domain Protect - prevent subdomain takeover

Lambdaguard ⭐ 326

AWS Serverless Security

Steampipe Mod Aws Compliance ⭐ 317

Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Steampipe.

Smallest Secured Golang Docker Image ⭐ 298

Create the smallest and secured golang docker image based on scratch

Opencspm ⭐ 285

Open Cloud Security Posture Management Engine

Starbase ⭐ 284

Graph-based security analysis for everyone

Aws Adfs ⭐ 283

Command line tool to ease aws cli authentication against ADFS (multi factor authentication with active directory)

🦉🔎 A simple tool to audit your AWS/GCP infrastructure for misconfiguration or potential security issues with plugins integration

Daytona ⭐ 281

a vault client, but for containers and servers.

A UNIX security auditing tool based on several security frameworks

Spacesiren ⭐ 268

A honey token manager and alert system for AWS.

Cloudfrunt ⭐ 257

A tool for identifying misconfigured CloudFront domains

Cyberrange ⭐ 254

The Open-Source AWS Cyber Range

Cloud Reports ⭐ 254

Scans your AWS cloud resources and generates reports. Check out free hosted version:

AWS Identity and Access Management Visualizer and Anomaly Finder

Awesome Serverless Security ⭐ 250

A curated list of awesome serverless security resources such as (e)books, articles, whitepapers, blogs and research papers.

Aws Security Toolbox ⭐ 247

AWS Security Tools (AST) in a simple Docker container. 📦

Ssm Env ⭐ 245

Expand env variables from AWS Parameter Store

Security Stack Mappings ⭐ 241

This project empowers defenders with independent data on which native security controls of leading technology platforms are most useful in defending against the adversary TTPs they care about.

Awskeytools ⭐ 241

AWS云平台 AccessKey 泄漏利用工具

Envless ⭐ 239

OpenSource, frictionless and secure way to share and manage app secrets across teams.

Aws Csa 2017 ⭐ 234

Study Notes for AWS Certified Solutions Architect Associate - 2017

Cnquery ⭐ 230

open source, cloud-native, graph-based asset inventory

✨ Securely connect to RDS, Elasticache, and other AWS resources in VPCs with no idle cost

Aws Auto Remediate ⭐ 219

Open source application to instantly remediate common security issues through the use of AWS Config

Related Searches

Security Vulnerabilities (12,341)

Laravel Security (11,580)

Php Security (10,611)

Python Amazon Web Services (7,907)

Amazon Web Services Lambda Functions (7,466)

Amazon Web Services Terraform (4,243)

Amazon Web Services Serverless (4,002)

Python Security (3,710)

Amazon Web Services Hcl (3,473)

Golang Amazon Web Services (3,104)

1-100 of 644 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2023 Awesome Open Source. All rights reserved.