Awesome Open Source

Programming Languages

Search results for amazon web services security

amazon-web-services x

10 search results found

Sops ⭐ 14,949

Simple and flexible tool for managing secrets

Prowler ⭐ 9,478

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more

My Arsenal Of Aws Security Tools ⭐ 8,549

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

Devops Resources ⭐ 7,566

DevOps resources - Linux, Jenkins, AWS, SRE, Prometheus, Docker, Python, Ansible, Git, Kubernetes, Terraform, OpenStack, SQL, NoSQL, Azure, GCP

Tfsec ⭐ 6,525

Security scanner for your Terraform code

Steampipe ⭐ 6,061

Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.

Scoutsuite ⭐ 5,962

Multi-Cloud Security Auditing Tool

Cloudmapper ⭐ 5,747

CloudMapper helps you analyze your Amazon Web Services (AWS) environments.

Devsecops ⭐ 5,090

Ultimate DevSecOps library

Terrascan ⭐ 4,461

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

Security_monkey ⭐ 4,347

Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

Privacy.sexy ⭐ 3,241

Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy

Cloudsploit ⭐ 3,155

Cloud Security Posture Management (CSPM)

Streamalert ⭐ 2,768

StreamAlert is a serverless, realtime data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using datasources and alerting logic you define.

Bless ⭐ 2,725

Repository for BLESS, an SSH Certificate Authority that runs as a AWS Lambda function

Cloudgoat ⭐ 2,330

CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool

Policy_sentry ⭐ 1,906

IAM Least Privilege Policy Generator

Aws Well Architected Labs ⭐ 1,897

Hands on labs and code to help you learn, measure, and build using architectural best practices.

Autovpn ⭐ 1,855

Create On Demand Disposable OpenVPN Endpoints on AWS.

Cloudsplaining ⭐ 1,840

Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.

Scout2 ⭐ 1,728

Security auditing tool for AWS environments

Lemur ⭐ 1,693

Repository for the Lemur Certificate Manager

Cloudfox ⭐ 1,681

Automating situational awareness for cloud penetration tests.

Awesome Cloud Security ⭐ 1,549

🛡️ Awesome Cloud Security Resources ⚔️

Stratus Red Team ⭐ 1,539

☁️ ⚡ Granular, Actionable Adversary Emulation for the Cloud

Metlo ⭐ 1,537

Metlo is an open-source API security platform.

Resoto ⭐ 1,482

Resoto creates an inventory of your cloud ☁️, provides deep visibility 👀, and reacts to changes in your infrastructure 🌐.

Binaryalert ⭐ 1,368

BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.

Eks Distro ⭐ 1,315

Amazon EKS Distro (EKS-D) is a Kubernetes distribution based on and used by Amazon Elastic Kubernetes Service (EKS) to create reliable and secure Kubernetes clusters.

Matano ⭐ 1,259

Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS

Cloudformation Guard ⭐ 1,196

Guard offers a policy-as-code domain-specific language (DSL) to write rules and validate JSON- and YAML-formatted data such as CloudFormation Templates, K8s configurations, and Terraform JSON plans/configurations against those rules. Take this survey to provide feedback about cfn-guard: https://amazonmr.au1.qualtrics.com/jfe/form/SV_bpy

Requests Ip Rotator ⭐ 1,109

A Python library to utilize AWS API Gateway's large IP pool as a proxy to generate pseudo-infinite IPs for web scraping and brute forcing.

Wrongsecrets ⭐ 1,107

Vulnerable app with examples showing how to not use secrets

Cfn_nag ⭐ 1,105

Linting tool for CloudFormation templates

Pacbot ⭐ 1,104

PacBot (Policy as Code Bot)

Repokid ⭐ 1,078

AWS Least Privilege for Distributed, High-Velocity Deployment

Terraform Aws Secure Baseline ⭐ 1,078

Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.

Xiringuito ⭐ 1,001

SSH-based "VPN for poors"

Regula checks infrastructure as code templates (Terraform, CloudFormation, k8s manifests) for AWS, Azure, Google Cloud, and Kubernetes security and compliance using Open Policy Agent/Rego

Breaking And Pwning Apps And Servers Aws Azure Training ⭐ 885

Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!

Awesome Aws Security ⭐ 878

Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security

Aws Security Reference Architecture Examples ⭐ 862

Example solutions demonstrating how to implement patterns within the AWS Security Reference Architecture guide using CloudFormation and Customizations for AWS Control Tower.

The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent.

Electriceye ⭐ 794

ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks

Trailscraper ⭐ 758

A command-line tool to get valuable information out of AWS CloudTrail

Aws Vpn Server Setup ⭐ 735

Setup your own private, secure, free* VPN on the Amazon AWS Cloud in 10 minutes. CloudFormation

Aws Secure Environment Accelerator ⭐ 698

The AWS Secure Environment Accelerator is a tool designed to help deploy and operate secure multi-account, multi-region AWS environments on an ongoing basis. The power of the solution is the configuration file which enables the completely automated deployment of customizable architectures within AWS without changing a single line of code.

Aws Security Viz ⭐ 677

Visualize your aws security groups.

Zeuscloud ⭐ 628

Open Source Cloud Security

Awesome Runners ⭐ 615

A curated list of awesome self-hosted GitHub Action runners in a large comparison matrix

Rattlesnakeos Stack ⭐ 556

Build your own privacy and security focused Android OS in the cloud.

Terraform Aws Security Group ⭐ 542

Terraform module to create AWS Security Group resources 🇺🇦

Allow startup developers to ship to production on day 1

Awesome Cloud Security ⭐ 527

A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.

Aws Serverless Security Workshop ⭐ 508

In this workshop, you will learn techniques to secure a serverless application built with AWS Lambda, Amazon API Gateway and RDS Aurora. We will cover AWS services and features you can leverage to improve the security of a serverless applications in 5 domains: identity & access management, code, data, infrastructure, logging & monitoring.

Aws Recon ⭐ 508

Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.

Honeylambda ⭐ 505

honeyλ - a simple, serverless application designed to create and monitor fake HTTP endpoints (i.e. URL honeytokens) automatically, on top of AWS Lambda and Amazon API Gateway

Kubestriker ⭐ 500

A Blazing fast Security Auditing tool for Kubernetes

Pike is a tool for determining the permissions or policy required for IAC code

Siem On Amazon Opensearch Service ⭐ 480

A solution for collecting, correlating and visualizing multiple types of logs to help investigate security incidents.

Falcosidekick ⭐ 477

Connect Falco to your ecosystem

Whispers ⭐ 457

Identify hardcoded secrets in static structured text

Aardvark ⭐ 454

Aardvark is a multi-account AWS IAM Access Advisor API

Aws Security Assessment Solution ⭐ 448

An AWS tool to help you create a point in time assessment of your AWS account using Prowler.

Aws Security Automation ⭐ 442

Collection of scripts and resources for DevSecOps and Automated Incident Response Security

Policyuniverse ⭐ 410

Parse and Process AWS IAM Policies, Statements, ARNs, and wildcards.

Aws Cloudsaga ⭐ 406

AWS CloudSaga - Simulate security events in AWS

Aws Security Survival Kit ⭐ 400

Bare minimum AWS Security Alerting and Configuration

Aws Security Workshops ⭐ 390

A collection of the latest AWS Security workshops

Cfripper ⭐ 384

Library and CLI tool for analysing CloudFormation templates and check them for security compliance.

A collection of regexes for every possbile use

Domain Protect ⭐ 340

OWASP Domain Protect - prevent subdomain takeover

Steampipe Mod Aws Compliance ⭐ 334

Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Steampipe.

Lambdaguard ⭐ 326

AWS Serverless Security

Starbase ⭐ 311

Graph-based security analysis for everyone

🦉🔎 A simple tool to audit your AWS/GCP infrastructure for misconfiguration or potential security issues with plugins integration

Smallest Secured Golang Docker Image ⭐ 298

Create the smallest and secured golang docker image based on scratch

A UNIX security auditing tool based on several security frameworks

Opencspm ⭐ 285

Open Cloud Security Posture Management Engine

Daytona ⭐ 284

a vault client, but for containers and servers.

Aws Adfs ⭐ 283

Command line tool to ease aws cli authentication against ADFS (multi factor authentication with active directory)

Spacesiren ⭐ 268

A honey token manager and alert system for AWS.

✨ Securely connect to RDS, Elasticache, and other AWS resources in VPCs with no idle cost

Cloudfrunt ⭐ 257

A tool for identifying misconfigured CloudFront domains

Cnquery ⭐ 256

open source, cloud-native, graph-based asset inventory

Cloud Reports ⭐ 254

Scans your AWS cloud resources and generates reports. Check out free hosted version:

Cyberrange ⭐ 254

The Open-Source AWS Cyber Range

AWS Identity and Access Management Visualizer and Anomaly Finder

Awesome Serverless Security ⭐ 250

A curated list of awesome serverless security resources such as (e)books, articles, whitepapers, blogs and research papers.

Ssm Env ⭐ 248

Expand env variables from AWS Parameter Store

Aws Security Toolbox ⭐ 247

AWS Security Tools (AST) in a simple Docker container. 📦

Substation ⭐ 242

Substation is a cloud-native, event-driven data pipeline toolkit built for security teams.

Envless ⭐ 242

OpenSource, frictionless and secure way to share and manage app secrets across teams.

Awskeytools ⭐ 241

AWS云平台 AccessKey 泄漏利用工具

Security Stack Mappings ⭐ 241

This project empowers defenders with independent data on which native security controls of leading technology platforms are most useful in defending against the adversary TTPs they care about.

Aws Csa 2017 ⭐ 234

Study Notes for AWS Certified Solutions Architect Associate - 2017

Automate permissions to your cloud and critical applications.

Aws Auto Remediate ⭐ 219

Open source application to instantly remediate common security issues through the use of AWS Config

Cloudintel ⭐ 216

This repo contains IOC, malware and malware analysis associated with Public cloud

Related Searches

Security Vulnerabilities (11,840)

Laravel Security (11,580)

Php Security (10,611)

Python Amazon Web Services (8,120)

Amazon Web Services Lambda Functions (7,495)

Amazon Web Services Terraform (4,243)

Amazon Web Services Serverless (4,018)

Amazon Web Services Hcl (3,473)

Golang Amazon Web Services (2,930)

Docker Amazon Web Services (2,864)

1-10 of 10 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.