AirIAM
sso-setup-automation
AirIAM | sso-setup-automation | |
---|---|---|
3 | 1 | |
752 | 3 | |
0.3% | - | |
0.0 | 10.0 | |
about 2 months ago | over 1 year ago | |
Python | Python | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
AirIAM
-
AWS Networking Concepts in a Diagram
ugh access + least privilege on AWS + GCP is really hard
not made easier by the fact that debugging service accounts can sometimes require rebooting boxes or clusters
'cloud traceroute' to discover where exactly the problem is would be amazing
(in fairness there are 'least privilege' tools I haven't tried -- listed below and I recall reading about others)
1. iam access analyzer https://aws.amazon.com/blogs/security/iam-access-analyzer-ma...
2. airiam https://github.com/bridgecrewio/AirIAM
3. policy simulator https://cloud.google.com/policy-intelligence/docs/iam-simula...
- AirIAM
-
My first Hacktoberfest !!✨
View on GitHub
sso-setup-automation
-
Automating AWS IAM Identity Center Setup Part 1
🔗 Here you can find the Solution on Github
What are some alternatives?
PMapper - A tool for quickly evaluating IAM permissions in AWS.
trailscraper - A command-line tool to get valuable information out of AWS CloudTrail
consoleme - A Central Control Plane for AWS Permissions and Access
sso-permission-management - AWS IAM Identity Center - Permission Management at scale
cloudsplaining - Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
cdk-aws-ad-connect - Creating AWS Managed AD-Connector using CDK
aws-security-workshops - A collection of the latest AWS Security workshops
policy_sentry - IAM Least Privilege Policy Generator
learn - Sourcegraph Learn: an educational hub to support all developers
prowler - Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
tfwrapper - Claranet France Terraform & OpenTofu Wrapper
coto - Undocumented AWS Management Console APIs SDK for Python