Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About
Search results for aws security
aws-security
x
78 search results found
Checkov
⭐
6,284
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
Terrascan
⭐
4,500
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
Security_monkey
⭐
4,350
Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.
Security Study Plan
⭐
3,949
Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...
Pacu
⭐
3,879
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
Policy_sentry
⭐
1,906
IAM Least Privilege Policy Generator
Cloudsplaining
⭐
1,840
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
Awesome Cloud Security
⭐
1,549
🛡️ Awesome Cloud Security Resources ⚔️
Stratus Red Team
⭐
1,539
☁️ ⚡ Granular, Actionable Adversary Emulation for the Cloud
Matano
⭐
1,259
Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
Cs Suite
⭐
1,118
Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.
Pacbot
⭐
1,104
PacBot (Policy as Code Bot)
Terragoat
⭐
1,071
TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
Breaking And Pwning Apps And Servers Aws Azure Training
⭐
885
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
Awesome Aws Security
⭐
878
Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
Awspx
⭐
868
A graph-based tool for visualizing effective access and resource relationships in AWS environments.
Aws Security Reference Architecture Examples
⭐
862
Example solutions demonstrating how to implement patterns within the AWS Security Reference Architecture guide using CloudFormation and Customizations for AWS Control Tower.
Electriceye
⭐
794
ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks
Airiam
⭐
702
Least privilege AWS IAM Terraformer
Awesome Cloud Security
⭐
527
A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.
Aws Guide
⭐
453
Amazon Web Services (AWS) Guide. Learn all about Amazon Web Services Tools, Services, and Certifications.
Terraformgoat
⭐
440
TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.
Aws Security Workshops
⭐
390
A collection of the latest AWS Security workshops
Cfripper
⭐
384
Library and CLI tool for analysing CloudFormation templates and check them for security compliance.
T Vault
⭐
343
Simplified secrets management solution
Lazytrivy
⭐
258
Vulnerability scanning just got lazier
Cloudgrep
⭐
240
cloudgrep is grep for cloud storage
Hammer
⭐
234
Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)
Aws Auto Remediate
⭐
219
Open source application to instantly remediate common security issues through the use of AWS Config
Managed Kubernetes Auditing Toolkit
⭐
199
All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
Security Skills Career Roadmap
⭐
156
Skills and career roadmap for various security roles like appsec, cloud security, devsecops, security engineer, security researchers, pentesting, api security, network security, mobile security and so on.with helpful resources, guidelines
Festin
⭐
150
FestIn - S3 Bucket Weakness Discovery
Cloudfrontier
⭐
110
Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.
Rpcheckup
⭐
108
rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.
Aws Foundations Cis Baseline
⭐
74
InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark
Cloud Security Audit
⭐
64
A command line security audit tool for Amazon Web Services
Cfngoat
⭐
64
Cfngoat is Bridgecrew's "Vulnerable by Design" Cloudformation repository. Cfngoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
Bovine
⭐
63
Building Operational Visibility Into (n) Environments
Aws Security Hub Response And Remediation
⭐
55
Pre-configured response & remediation playbooks for AWS Security Hub
Introspector
⭐
52
A schema and set of tools for using SQL to query cloud infrastructure.
Awsxenos
⭐
45
AWSXenos will list all the trust relationships in all the IAM roles and S3 buckets
Krampus
⭐
44
The original AWS security enforcer™
Sandcastle
⭐
44
🏰 A Python script for AWS S3 bucket enumeration.
Cdkgoat
⭐
34
CdkGoat is Bridgecrew's "Vulnerable by Design" AWS CDK repository. CdkGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
Eks Creation Engine
⭐
33
The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the CISO to facilitate the creation and enablement of secure EKS Clusters.
Aws Attack
⭐
32
AWSATT&CK adds MITRE ATT&CK context and additional logging capabilities to Rhino Security Labs's open-source AWS exploitation framework, Pacu.
Gdpatrol
⭐
31
A Lambda-powered Security Orchestration framework for AWS GuardDuty
Defensive S3 Buckets
⭐
26
Defensive S3 Bucket Squating
Aws Automirror
⭐
24
Automation of VPC Traffic Mirror Sessions in AWS
Aws Firewall Manager Automations For Aws Organizations
⭐
24
The Automations For AWS Firewall Manager solution is intended for customers looking to easily manage consistent security posture across their entire AWS Organization. The solution uses AWS Firewall Manager Service.
Syntheticsun
⭐
23
SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, managed AWS security services and, serverless technologies to continuously prevent, detect and respond to threats.
Terraform Provider Policyguru
⭐
23
Terraform provider for Policy Sentry (IAM least privilege generator and auditor)
Badbucket
⭐
23
badbucket checks your s3 bucket for common misconfigurations
Hazprone
⭐
21
HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enabling you to pentest Vulnerabilities within, and hence, gain a better understanding of what could go wrong and why!!
Aws Waf Logger
⭐
17
Log all AWS WAF Matched Rules to S3 and/or Loggly using Serverless
Cybercloudlearning
⭐
17
Repo for Cybercloud Tutorials hosted at cybercloud.guru
Aws Mirror Toolkit
⭐
16
A set of tools and procedures for automating NSM and NIDS deployments in AWS
Aws Threathunting
⭐
13
Projects for AWS ThreatHunting
Learn Iam Policy
⭐
13
Labs helping you to learn how write IAM policies following the least privilege principle.
Aws Lambda Firewall
⭐
12
Securely and conveniently support IP address whitelists for your publicly routable services.
Cfn Analyse
⭐
11
CloudFormation static analysis tool.
Sgsync
⭐
11
AWS Security Group Synchronization Tool
Aws S3 Baseline
⭐
11
A micro InSpec baseline to check for insecure or public s3 buckets in your VPC
Aws Security 365
⭐
11
A collection of open source tools to assess, harden and audit various AWS services from a security perspective
Awsrecon
⭐
11
Tool for reconnaissance of AWS cloud environments
Aws Mfa Enforce
⭐
10
Serverless function to automate enforcement of Multi-Factor Authentication (MFA) to all AWS IAM users with access to AWS Management Console.
Aws Sec Tools
⭐
10
Docker container bundling tools for manual AWS security reviews
Cis Aws Foundations Hardening
⭐
9
(WIP) A terraform / kitchen-terraform hardening baseline for the cis-aws-foundations-baseline
Python Prowler Container
⭐
9
Minimalist containerized implementation of Prowler from https://github.com/toniblyx/prowler, made to run within ECS Fargate and have Secrets passed via AWS Secrets Manager
100 Days Of Cloud
⭐
9
#100DaysOfCloud #100DaysOfCyberSecurity snippets starting from 28 SEPT 2022
Aws Security Hub Csv Manager
⭐
8
CSV Manager for AWS Security Hub exports SecurityHub findings to a CSV file and allows you to mass-update SecurityHub findings by modifying that CSV file.
Sgcontrol
⭐
7
Foolproof AWS security group management.
Cdn Securitygroup Sync
⭐
7
Automates sync of AWS security groups with your CDN provider's CIDRs
Aws Iam Utils
⭐
7
Python library for examining, creating and optimising IAM policies
Auto Close Aws Accounts
⭐
6
Automatically close AWS Accounts when moved to a specific Organizational Unit, such as SuspendedOU or ToBeDeletedOU or BlackHole 😛
Aws Iam Credential Report
⭐
6
AWS CloudFormation templates and Python code for AWS blog post on how to automate IAM credential reports at scale across AWS.
Attacking Cloudgoat2
⭐
5
A step-by-step walkthrough of CloudGoat 2.0 scenarios.
Howcrew
⭐
5
Super-powered know how tools for AWS and GCP cloud security
1-78 of 78 search results
Privacy
|
About
|
Terms
|
Follow Us On Twitter
Copyright 2018-2024 Awesome Open Source. All rights reserved.