Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
-
Updated
Jul 10, 2024 - Python
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
IAM Least Privilege Policy Generator
Example solutions demonstrating how to implement patterns within the AWS Security Reference Architecture guide using CloudFormation (including Customizations for AWS Control Tower) and Terraform.
ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks
A graph-based tool for visualizing effective access and resource relationships in AWS environments.
Least privilege AWS IAM Terraformer
Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)
Library and CLI tool for analysing CloudFormation templates and check them for security compliance.
cloudgrep is grep for cloud storage
Open source application to instantly remediate common security issues through the use of AWS Config
An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and security implications
SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, managed AWS security services and, serverless technologies to continuously prevent, detect and respond to threats.
Adaptive AWS Zero Trust Policy made easy: Auto-generate least-privilege policies based on user activity in real time! Accelerate the adoption of smart access control
A schema and set of tools for using SQL to query cloud infrastructure.
The original AWS security enforcer™
AWSXenos will list all the trust relationships in all the IAM roles, S3 buckets, and more
🏰 A Python script for AWS S3 bucket enumeration.
Add a description, image, and links to the aws-security topic page so that developers can more easily learn about it.
To associate your repository with the aws-security topic, visit your repo's landing page and select "manage topics."