The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning. Learn more →
Top 11 Python aws-security Projects
-
checkov
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
-
pacu
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
aws-security-reference-architecture-examples
Example solutions demonstrating how to implement patterns within the AWS Security Reference Architecture guide using CloudFormation (including Customizations for AWS Control Tower) and Terraform.
-
awspx
A graph-based tool for visualizing effective access and resource relationships in AWS environments.
-
ElectricEye
ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
auto-close-aws-accounts
Automatically close AWS Accounts when moved to a specific Organizational Unit, such as SuspendedOU or ToBeDeletedOU or BlackHole 😛
Project mention: A Deep Dive Into Terraform Static Code Analysis Tools: Features and Comparisons | dev.to | 2024-04-16Checkov Owner/Maintainer: Prisma Cloud by Palo Alto Networks (acquired in 2021) Age: First released on GitHub on March 31st, 2021 License: Apache License 2.0
Pra isso, usei a belíssima ferramenta Pacu https://github.com/RhinoSecurityLabs/pacu.
Looks similar to awspx. Always good to have more visualisation tools
ugh access + least privilege on AWS + GCP is really hard
not made easier by the fact that debugging service accounts can sometimes require rebooting boxes or clusters
'cloud traceroute' to discover where exactly the problem is would be amazing
(in fairness there are 'least privilege' tools I haven't tried -- listed below and I recall reading about others)
1. iam access analyzer https://aws.amazon.com/blogs/security/iam-access-analyzer-ma...
2. airiam https://github.com/bridgecrewio/AirIAM
3. policy simulator https://cloud.google.com/policy-intelligence/docs/iam-simula...
Python aws-security related posts
- De um mimo até a elevação de privilégios na Cloud
- Newsletter martinmueller.dev 2022 week 21
- AWS Security Reference Architecture (AWS SRA) code examples v2.0.0 release
- How do I build a network on AWS to capture flow data?
- Testing Terraform The Right Way
- Pacu: The Open Source AWS Exploitation Framework
- Pacu: The Open Source AWS Exploitation Framework
-
A note from our sponsor - WorkOS
workos.com | 23 Apr 2024
Index
What are some of the best open-source aws-security projects in Python? This list will help you:
Project | Stars | |
---|---|---|
1 | checkov | 6,512 |
2 | pacu | 4,014 |
3 | policy_sentry | 1,938 |
4 | aws-security-reference-architecture-examples | 918 |
5 | awspx | 865 |
6 | ElectricEye | 860 |
7 | AirIAM | 750 |
8 | introspector | 66 |
9 | AWSXenos | 58 |
10 | aws-iam-utils | 16 |
11 | auto-close-aws-accounts | 14 |
Sponsored