AirIAM
tfwrapper
AirIAM | tfwrapper | |
---|---|---|
3 | 1 | |
752 | 127 | |
0.3% | 0.8% | |
0.0 | 9.3 | |
about 2 months ago | 5 days ago | |
Python | Python | |
Apache License 2.0 | Mozilla Public License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
AirIAM
-
AWS Networking Concepts in a Diagram
ugh access + least privilege on AWS + GCP is really hard
not made easier by the fact that debugging service accounts can sometimes require rebooting boxes or clusters
'cloud traceroute' to discover where exactly the problem is would be amazing
(in fairness there are 'least privilege' tools I haven't tried -- listed below and I recall reading about others)
1. iam access analyzer https://aws.amazon.com/blogs/security/iam-access-analyzer-ma...
2. airiam https://github.com/bridgecrewio/AirIAM
3. policy simulator https://cloud.google.com/policy-intelligence/docs/iam-simula...
- AirIAM
-
My first Hacktoberfest !!✨
View on GitHub
tfwrapper
-
DevSecOps Azure
Claranet (another consultancy)
What are some alternatives?
PMapper - A tool for quickly evaluating IAM permissions in AWS.
python-terraform
consoleme - A Central Control Plane for AWS Permissions and Access
90DaysOfDevOps - This repository is a Challenge for the DevOps Community to get stronger in DevOps. This challenge starts on the 1st January 2023 and in the next 90 Days we promise ourselves to become better at DevOps. The reason for making this Public is so that others can learn from the community and help each other grow.
cloudsplaining - Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
kapitan - Generic templated configuration management for Kubernetes, Terraform and other things
aws-security-workshops - A collection of the latest AWS Security workshops
devops-exercises - Linux, Jenkins, AWS, SRE, Prometheus, Docker, Python, Ansible, Git, Kubernetes, Terraform, OpenStack, SQL, NoSQL, Azure, GCP, DNS, Elastic, Network, Virtualization. DevOps Interview Questions
learn - Sourcegraph Learn: an educational hub to support all developers
terraform-cdk - Define infrastructure resources using programming constructs and provision them using HashiCorp Terraform
black - The uncompromising Python code formatter [Moved to: https://github.com/psf/black]
checkov - Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.