opencspm
aws-recon
opencspm | aws-recon | |
---|---|---|
2 | 3 | |
287 | 474 | |
- | - | |
3.7 | 0.0 | |
about 2 years ago | 11 months ago | |
Ruby | Ruby | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
opencspm
-
Open source alternative cloud security tool that works like Wiz/Lacework/Aqua
There was a project called open cspm(OpenCSPM), but im afraid its not being maintained anymore.
- GitHub - OpenCSPM/opencspm: Open Cloud Security Posture Management Engine
aws-recon
-
Automated capturing & documenting infra for AWS (EKS, IAM, VPC etc.)
For an open source approach, tools from the security realm could potentially be a fit (keyword: aws recon), e.g. https://github.com/darkbitio/aws-recon
- Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.
-
AWS tool / service to see EVERYTHING that we have running / using / etc ... to avoid billing ...
It's not graphical, but AWS Recon does this.
What are some alternatives?
prowler - Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
wpscan - WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via [email protected]
cloudsploit - Cloud Security Posture Management (CSPM)
cfn_nag - Linting tool for CloudFormation templates
cloudquery - The open source high performance ELT framework powered by Apache Arrow
awesome-runners - A curated list of awesome self-hosted GitHub Action runners in a large comparison matrix
kubestriker - A Blazing fast Security Auditing tool for Kubernetes
aws-foundations-cis-baseline - InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark
manageiq - ManageIQ Open-Source Management Platform
cloud-lusat - Cloud Internal Threat Intelligence Feeds, Inventory and Compliance Data Collection
externalsecret-operator - An operator to fetch secrets from cloud services and inject them in Kubernetes
WhatWeb - Next generation web scanner