-
prowler
Discontinued Prowler is an Open Source security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 240 controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks. [Moved to: https://github.com/prowler-cloud/prowler] (by toniblyx)
https://github.com/toniblyx/prowle (it's look like huge checklist)
-
InfluxDB
InfluxDB – Built for High-Performance Time Series Workloads. InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.
-
https://github.com/nccgroup/ScoutSuite (I used it for GCP one time, but I can't say if it good for AWS)
-
bucketeer
Bucketeer is a small script that builds off the useful Sublist3r tool. The Tool tries to identify S3 Buckets and other useful subdomain information, that is used to perform subdomain takeover attacks.
-
https://github.com/scalefactory/s3audit (it's look intersting, because I need to identify if we have open buckets)
Related posts
-
ScoutSuite: Open-Source Multi-Cloud Security Auditing Tool
-
Azure and M365 Secure Config Review
-
AWS Security Checklist
-
Tool Release – ScoutSuite 5.11.0 - a new version of the open-source, multi-cloud auditing tool ScoutSuite - AWS, Azure and GCP improvements
-
Question how to know all services used by me.