MemLabs
my-arsenal-of-aws-security-tools
Our great sponsors
| MemLabs | my-arsenal-of-aws-security-tools | |
|---|---|---|
| 1 | 4 | |
| 944 | 6,920 | |
| - | - | |
| 0.5 | 5.7 | |
| about 1 year ago | 14 days ago | |
| Shell | Shell | |
| MIT License | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
MemLabs
-
I saw my definition of a worst case scenario today, all because the client didn't want to spend a little bit of money a couple years ago.
I think your best bet to start today is to start looking at self-education options (all over youtube, reddit, google) and start shopping for jobs that either have big training budgets or are at a service provider/vendor that offers IR and try to move laterally within it. You'd be surprised by what you get from just shooting your shot. You could consider some really basic certs like Sec + (avoid CEH like the plague unless you're gov't.) or Blue Team Level 1. I like to watch guys like 13cubed, or the surviving digital forensics podcasts and courses. Also just stay aware of infosec news from sources like brian krebs or cyberwire daily. Some other things to think about are ashemery.com/dfir.html and https://github.com/stuxnet999/MemLabs for some good exercises. Don't feel bad for using walkthroughs your first few times. SANS 3 minutes max is also great for quick topics in DFIR
my-arsenal-of-aws-security-tools
-
Using Prowler to Audit your AWS account for vulnerabilities.
Few days ago I came across this repository and I found Prowler(Go Star the repo).
- GitHub - toniblyx/my-arsenal-of-aws-security-tools: List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
-
Aws Cloud Security
Your question is lacking some context or detail, none the less here is a great repo of AWS security tools to play with: https://github.com/toniblyx/my-arsenal-of-aws-security-tools
-
We launched a free cloud security and compliance tool
Tons of great stuff here too: https://github.com/toniblyx/my-arsenal-of-aws-security-tools
What are some alternatives?
Android-PIN-Bruteforce - Unlock an Android phone (or device) by bruteforcing the lockscreen PIN. Turn your Kali Nethunter phone into a bruteforce PIN cracker for Android devices! (no root, no adb)
CaptfEncoder - Captfencoder is a rapid cross platform network security tool suite, providing network security related code conversion, classical cryptography, cryptography, asymmetric encryption, miscellaneous tools, and aggregating all kinds of online tools.
Kuiper - Digital Forensics Investigation Platform
prowler - Prowler is an Open Source security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.
lynis - Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
LinuxForensics - Everything related to Linux Forensics
robot_hacking_manual - Robot Hacking Manual (RHM). From robotics to cybersecurity. Papers, notes and writeups from a journey into robot cybersecurity.
mal_unpack - Dynamic unpacker based on PE-sieve
cfn-security - A simple GitHub Action for AWS CloudFormation static code analysis to improve infrastructure-as-code security.
iamzero - Identity & Access Management simplified and secure.
MemProcFS-Analyzer - MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR
trailscraper - A command-line tool to get valuable information out of AWS CloudTrail