SaaSHub helps you find the best software and product alternatives Learn more →
Top 12 HCL Security Projects
-
terraform-aws-secure-baseline
Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.
-
steampipe-mod-aws-compliance
Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe and Steampipe.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
terraform-aws-ec2-instance
Terraform module for provisioning a general purpose EC2 host (by cloudposse)
-
steampipe-mod-aws-perimeter
Is your AWS perimeter secure? Use Powerpipe and Steampipe to check your AWS accounts for public resources, resources shared with untrusted accounts, insecure network configurations and more.
-
terraform-aws-oidc-github
Terraform module to configure GitHub Actions as an IAM OIDC identity provider in AWS.
-
KaiMonkey
KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
steampipe-mod-zoom-compliance
Run individual configuration, compliance and security controls or full compliance benchmarks for CIS for Zoom using Powerpipe and Steampipe.
-
steampipe-mod-azure-compliance
Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, HIPAA HITRUST, NIST, and more across all of your Azure subscriptions using Powerpipe and Steampipe.
-
nodejs-leak-env-vars
POC of a vulnerable app leaking environment variables via a compromised NPM package
In a prior post I showed how to install Steampipe in AWS CloudShell to instantly query over 460+ resource types from your AWS APIs using SQL, and another post on how to use the Steampipe AWS Compliance mod to assess over 25+ security benchmarks across your AWS accounts.
Project mention: Help finding open source Terraform configurations that are not educational projects or developer tools | /r/Terraform | 2023-09-28
Project mention: Shielding Your Apps in the Cloud: Integrating CloudFront and AWS WAF with Terraform | dev.to | 2024-01-23Using the Cloudposse Terraform module, I have the following configuration:
HCL Security related posts
- Shielding Your Apps in the Cloud: Integrating CloudFront and AWS WAF with Terraform
- What's new in the CIS v2.0 benchmark for AWS
- Open source automated AWS CIS v2.0 benchmark assessment just released by Steampipe.io
- [Terraform] TFSEC vs Tchekhov vs Terrascan - Que recommandez-vous ?
- Semgrep - Beta support for Rust
- Is there an open source version of Dome9?
- CLoud Custodian - Pretty Output? Alternatives?
-
A note from our sponsor - SaaSHub
www.saashub.com | 24 Apr 2024
Index
What are some of the best open-source Security projects in HCL? This list will help you:
Project | Stars | |
---|---|---|
1 | terraform-aws-secure-baseline | 1,115 |
2 | steampipe-mod-aws-compliance | 351 |
3 | cloud-guardrails | 177 |
4 | terraform-aws-ec2-instance | 157 |
5 | steampipe-mod-aws-perimeter | 105 |
6 | terraform-aws-oidc-github | 89 |
7 | KaiMonkey | 85 |
8 | steampipe-mod-zoom-compliance | 62 |
9 | steampipe-mod-azure-compliance | 50 |
10 | terraform-aws-waf | 35 |
11 | terraform-modules | 2 |
12 | nodejs-leak-env-vars | 0 |
Sponsored