Topic: aws-security Goto Github

👇 Here are 183 public repositories matching this topic...

4ndersonlin / awesome-cloud-security
aws-security,🛡️ Awesome Cloud Security Resources ⚔️
User: 4ndersonlin
aws aws-security azure azure-security cloud-computing cloud-security cybersecurity gcp gcp-security security

adanalvarez / honeytrail
aws-security,Independently deploy customized honeyservices in AWS to trigger alerts on unauthorized access. It utilizes a dedicated CloudTrail for precise detection and notification specifically for honeyservices activity.
User: adanalvarez
aws aws-security cloud-security deception honeypot security

adanalvarez / traildiscover
aws-security,An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and security implications
User: adanalvarez
Home Page: https://traildiscover.cloud/
aws aws-security cloud-security mitre-attack security

airwalk-digital / awsxenos
aws-security,AWSXenos will list all the trust relationships in all the IAM roles, S3 buckets, and more
Organization: airwalk-digital
aws aws-iam aws-security cloud-security security

ansorren / gdpatrol
aws-security,A Lambda-powered Security Orchestration framework for AWS GuardDuty
User: ansorren
Home Page: https://siemdetection.com
aws aws-lambda cloud cloudsecurity aws-security aws-guardduty soar incident-response cybersecurity threatintel

appliscale / cloud-security-audit
aws-security,A command line security audit tool for Amazon Web Services
Organization: appliscale
aws s3 ec2 security-audit security amazon-web-services command-line golang go tool aws-security cloud cloud-security-audit

appsecco / attacking-cloudgoat2
aws-security,A step-by-step walkthrough of CloudGoat 2.0 scenarios.
Organization: appsecco
cloud-security cloudgoat aws-security walkthrough pentesting pentesting-resources aws documentation

appsecco / breaking-and-pwning-apps-and-servers-aws-azure-training
aws-security,Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
Organization: appsecco
application-security aws-security azure-security free opensource penetration-testing pentesting

aws-samples / aws-security-hub-response-and-remediation
aws-security,Pre-configured response & remediation playbooks for AWS Security Hub
Organization: aws-samples
Home Page: https://aws.amazon.com/blogs/security/automated-response-and-remediation-with-aws-security-hub/
aws-security aws-security-hub aws-lambda aws-cloudformation incident-response continuous-compliance compliance-as-code compliance-automation cis-benchmark cis-aws-benchmark

aws-samples / aws-security-reference-architecture-examples
aws-security,Example solutions demonstrating how to implement patterns within the AWS Security Reference Architecture guide using CloudFormation (including Customizations for AWS Control Tower) and Terraform.
Organization: aws-samples
aws aws-cloudformation aws-control-tower aws-security aws-security-automation

blackbotsecurity / aws-attack
aws-security,AWSATT&CK adds MITRE ATT&CK context and additional logging capabilities to Rhino Security Labs's open-source AWS exploitation framework, Pacu.
Organization: blackbotsecurity
mitre-attack aws-security redteam cloud-security penetration-testing-tools post-exploitation penetration-testing-framework purpleteam

bridgecrewio / airiam
aws-security,Least privilege AWS IAM Terraformer
Organization: bridgecrewio
Home Page: https://airiam.io
aws aws-iam aws-security aws-security-automation bridgecrew hacktoberfest iam privileges-model terraform

bridgecrewio / cdkgoat
aws-security,CdkGoat is Bridgecrew's "Vulnerable by Design" AWS CDK repository. CdkGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
Organization: bridgecrewio
Home Page: https://www.bridgecrew.io/
aws-cdk cloudformation devsecops cloud-security aws-security

bridgecrewio / cfngoat
aws-security,Cfngoat is Bridgecrew's "Vulnerable by Design" Cloudformation repository. Cfngoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
Organization: bridgecrewio
Home Page: https://www.bridgecrew.io/
aws-security cloudformation cloudsecurity devsecops

bridgecrewio / checkov
aws-security,Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
Organization: bridgecrewio
Home Page: https://www.checkov.io/
terraform static-analysis aws gcp azure aws-security cloudformation scans compliance kubernetes

bridgecrewio / terragoat
aws-security,TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
Organization: bridgecrewio
Home Page: https://www.bridgecrew.io/
terraform aws-security cloud-security goat azure-security gcp-security devsecops

cado-security / cloudgrep
aws-security,cloudgrep is grep for cloud storage
Organization: cado-security
aws aws-s3 grep search cloud cloud-security aws-security azure azure-security gcp

chick-fil-a / bovine
aws-security,Building Operational Visibility Into (n) Environments
Organization: chick-fil-a
security security-tools aws-security aws security-audit security-automation security-compliance serverless

clouddefenseai / awszerotrustpolicy
aws-security,Adaptive AWS Zero Trust Policy made easy: Auto-generate least-privilege policies based on user activity in real time! Accelerate the adoption of smart access control
Organization: clouddefenseai
Home Page: https://clouddefense.ai/
aws aws-iam aws-security cloud cloud-security cloudtrail-log-analytics iam security clouddefense aws-policy

cr0hn / festin
aws-security,FestIn - Open S3 Bucket Scanner
User: cr0hn
s3 s3-bucket s3-security aws-security

datadog / managed-kubernetes-auditing-toolkit
aws-security,All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
Organization: datadog
kubernetes aws-eks aws-security eks kubernetes-security managed-kubernetes

datadog / stratus-red-team
aws-security,:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud
Organization: datadog
Home Page: https://stratus-red-team.cloud
aws adversary-emulation purple-team mitre-attack cloud-security cloud-native-security detection-engineering threat-detection security aws-security azure-security kubernetes-security gcp-security

dowjones / hammer
aws-security,Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)
Organization: dowjones
devsecops cloudsecurity aws aws-security

funkmyster / awesome-cloud-security
aws-security,A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.
User: funkmyster
cloud-security aws security information-security waf dlp logging cloud elasticsearch awesome

goldfiglabs / introspector
aws-security,A schema and set of tools for using SQL to query cloud infrastructure.
Organization: goldfiglabs
Home Page: https://www.goldfiglabs.com/
aws sql database-schema security-groups iam postgres infrastructure-as-deployed secops security-tools compliance-as-code

goldfiglabs / rpcheckup
aws-security,rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.
Organization: goldfiglabs
Home Page: https://www.goldfiglabs.com/
aws infosec ec2 s3 resourcepolicy cloudsecurity aws-security cspm

hxsecurity / terraformgoat
aws-security,TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.
Organization: hxsecurity
security terraform gcp cloudsecurity aws-security azure-security gcp-security kubernetes-security cloud-security

jassics / awesome-aws-security
aws-security,Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
User: jassics
awesome awesome-list awesome-lists aws aws-auditing aws-security aws-security-automation aws-security-resources cloud-security security security-tools

jassics / cybersecurity-roadmap
aws-security,Skills and career roadmap for various security roles like application security, cloud security, DevSecOps, security engineer, security researchers, pentesting, api security, network security, mobile security and so on with helpful resources, guidelines
User: jassics
Home Page: https://cybercloud.guru/
application-security aws-security career-development career-guide career-plan career-roadmaps cloud-security cybersecurity-awareness cybersecurity-career-path devsecops interview-questions network-security security security-automation security-questions security-tools

jassics / security-study-plan
aws-security,Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...
User: jassics
Home Page: https://cybercloud.guru/
aws-security study-guide study-plan appsec appsec-tutorials azure-security devsecops-university gcp-security pentesting application-security

jonrau1 / electriceye
aws-security,ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks
User: jonrau1
security-tools security-audit cloud-security security-monitoring aws-security security-hub cloud-compliance-reporting cloud-auditing security-engineering devsecops

jonrau1 / syntheticsun
aws-security,SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, managed AWS security services and, serverless technologies to continuously prevent, detect and respond to threats.
User: jonrau1
threat-intelligence machine-learning anomaly-detection aws-security aws-serverless serverless automation geolocation threat-detection guardduty security-automation security-tools aws sagemaker incident-response kibana elasticsearch data-science data-visualization misp

lightspin-tech / eks-creation-engine
aws-security,The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the CISO to facilitate the creation and enablement of secure EKS Clusters.
Organization: lightspin-tech
Home Page: https://blog.lightspin.io/why-create-an-eks-creation-tool
aws aws-kubernetes aws-security cloud-sec-infra cloud-security compliance container-security continuous-deployment devops devsecops infrastructure-as-code kubernetes kubernetes-deployment kubernetes-secrets kubernetes-security security

matanolabs / matano
aws-security,Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
Organization: matanolabs
Home Page: https://matano.dev
aws cloud security big-data serverless apache-iceberg log-analytics log-management threat-hunting rust

mikeroyal / aws-guide
aws-security,Amazon Web Services (AWS) Guide. Learn all about Amazon Web Services Tools, Services, and Certifications.
User: mikeroyal
aws aws-lambda aws-ec2 aws-cli aws-cdk aws-dynamodb aws-apigateway aws-sdk aws-certification amazon-web-services

mitre / aws-foundations-cis-baseline
aws-security,InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark
Organization: mitre
inspec mitre-corporation cloud security ia aws aws-security cis inspec-profile mitre-inspec

mlevit / aws-auto-remediate
aws-security,Open source application to instantly remediate common security issues through the use of AWS Config
User: mlevit
aws lambda cloud security security-tools remediation serverless serverless-framework aws-security aws-compliance

netflix / security_monkey
aws-security,Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.
Organization: netflix
aws python aws-s3 aws-ec2 aws-sqs aws-vpc aws-iam boto3 boto botocore

offensive-terraform / offensive-terraform.github.io
aws-security,Offensive Terraform Website
Organization: offensive-terraform
Home Page: https://offensive-terraform.github.io
aws gcp azure cloud-security docker offensive-security aws-security gcp-security azure-security attack-modules

owenrumney / lazytrivy
aws-security,Vulnerability scanning just got lazier
User: owenrumney
security-tools trivy tui golang golang-cli security-auditing-tool aws-security scanner misconfigurations staticanalysis

rhinosecuritylabs / pacu
aws-security,The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
Organization: rhinosecuritylabs
Home Page: https://rhinosecuritylabs.com/aws/pacu-open-source-aws-exploitation-framework/
aws-security penetration-testing aws security python

riskprofiler / cloudfrontier
aws-security,Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.
Organization: riskprofiler
aws gcp azure digitalocean cybersecurity cloudsecurity shadowrisk shadow-risk cyber-security cloud-security

salesforce / cloudsplaining
aws-security,Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
Organization: salesforce
Home Page: https://cloudsplaining.readthedocs.io/
aws aws-iam cloud security salesforce aws-security cloud-security iam hacktoberfest

salesforce / policy_sentry
aws-security,IAM Least Privilege Policy Generator
Organization: salesforce
Home Page: https://policy-sentry.readthedocs.io/
aws iam cloud security cloudsecurity iam-policy aws-security salesforce hacktoberfest

securityftw / cs-suite
aws-security,Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.
Organization: securityftw
aws-security security-audit cloud-security gcp-audit-report gcp aws-audit security azure-security azure azure-audit security-tools

sendgrid / krampus
aws-security,The original AWS security enforcer™
Organization: sendgrid
aws aws-security aws-security-automation aws-lambda infosec

skyscanner / cfripper
aws-security,Library and CLI tool for analysing CloudFormation templates and check them for security compliance.
Organization: skyscanner
Home Page: https://cfripper.readthedocs.io/
cfripper cloudformation-template cloudformation cloud-governance cloudformation-linter aws-security static-analysis compliance aws

tenable / terrascan
aws-security,Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
Organization: tenable
Home Page: https://runterrascan.io
security-tools infrastructure-as-code devsecops devops security terraform aws cloudsecurity cloud-security terrascan

tmobile / pacbot
aws-security,PacBot (Policy as Code Bot)
Organization: tmobile
Home Page: https://tmobile.github.io/pacbot/
cloud-security security aws continous-compliance cloud-auditing policy-as-code cloud security-automation aws-security java

withsecurelabs / awspx
aws-security,A graph-based tool for visualizing effective access and resource relationships in AWS environments.
Organization: withsecurelabs
aws aws-security graph-theory pentesting