Aws-config-rules Alternatives

aws-config-rules reviews and mentions

• ¿Es AWS seguro?
  1 project | dev.to | 1 Feb 2024
• New AWS Config Rules - LambdaLess and rusty
  3 projects | dev.to | 22 May 2022

  You can see the whole 440 line Lambda function in the AWS Config Rules repository on github.

• Centralising audit, compliance and incident detection
  2 projects | dev.to | 29 Mar 2022

  AWS provide a set of sample templates for conformance packs. We will use the 'Operational Best Practices for Security, Identity and Compliance Services'. The template is available in this GitHub repo

• What are some pros in choosing GCP over AWS or Azure as of today?
  2 projects | /r/devops | 7 Mar 2022

  As others have said - AWS is more complete and mature. They have everything but got to make all the mistakes first. Sometimes though this means that what you get is just a massive collection of parts with partial instructions. Conformance Packs for AWS Organizations to me is just ridiculous. You might think it's a complete solution until you try to implement it in your org- then you find that only the alerting rules are provided in a coherent way. There's some lambdas in Python, some in Java and some in Node, but there's no package management for them or matching them up to the rules packs. No way to verify which packs you have installed or diff the rules between one and another. You'd need a full-on polyglot dev team to have a hope implementing those in your org! Having said that, the managed config rules are straightforward, complete and relatively easy to work with

• Is there a tool to convert AWS Conformance Packs to Config Rules?
  3 projects | /r/Terraform | 9 Dec 2021

  Conformance Packs are essentially lists of AWS Config Rules in yaml format (i.e. https://github.com/awslabs/aws-config-rules/blob/master/aws-config-conformance-packs/Operational-Best-Practices-for-NIST-800-171.yaml ), so it should be pretty easy to parse and convert to terraform. Just wondering if anyone knows of a tool that does this before I attempt it myself.

• Using AWS Config to get a list of all nonCMK for all services in use
  1 project | /r/aws | 15 Sep 2021
• AWS Control Tower factory-generated accounts - root user vs Guardrail?
  2 projects | /r/aws | 26 Apr 2021

  We're working on that now, if anyone is interested in this, the code behind each compliance pack benchmark is on github, as well as for the remediations, when you're ready for that. So you just gotta bundle up your own StackSets of Config Rules and push 'em out.

• One AWS account per developer?
  1 project | /r/aws | 24 Mar 2021

  Another problem I'm running into now is Security Hub benchmarks. To a certain extent, I'm okay with some 'risky' behavior in a sandbox, that's probably just a sign that the developer is learning/practicing something, however there's no good way to just enable the AWS Foundational Security Best Practices on just the Sandbox OU. I'm going to have to take their code and deploy it myself in a manner that suits our environment.

• A note from our sponsor - SaaSHub
  www.saashub.com | 9 May 2024

  SaaSHub helps you find the best software and product alternatives Learn more →