The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning. Learn more →
Top 23 aws-security Open-Source Projects
-
checkov
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
-
terrascan
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
security-study-plan
Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...
-
pacu
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
matano
Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
-
awesome-aws-security
Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
-
aws-security-reference-architecture-examples
Example solutions demonstrating how to implement patterns within the AWS Security Reference Architecture guide using CloudFormation (including Customizations for AWS Control Tower) and Terraform.
-
awspx
A graph-based tool for visualizing effective access and resource relationships in AWS environments.
-
ElectricEye
ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks
-
awesome-cloud-security
A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples. (by Funkmyster)
-
AWS-Guide
Amazon Web Services (AWS) Guide. Learn all about Amazon Web Services Tools, Services, and Certifications.
-
managed-kubernetes-auditing-toolkit
All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
-
rpCheckup
rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.
-
aws-foundations-cis-baseline
InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Project mention: A Deep Dive Into Terraform Static Code Analysis Tools: Features and Comparisons | dev.to | 2024-04-16Checkov Owner/Maintainer: Prisma Cloud by Palo Alto Networks (acquired in 2021) Age: First released on GitHub on March 31st, 2021 License: Apache License 2.0
Project mention: A Deep Dive Into Terraform Static Code Analysis Tools: Features and Comparisons | dev.to | 2024-04-16Terrascan Owner/Maintainer: Tenable (acquired in 2022) Age: First release on GitHub on November 28th, 2017 License: Apache License 2.0
Pra isso, usei a belíssima ferramenta Pacu https://github.com/RhinoSecurityLabs/pacu.
sorry thats https://matano.dev
Looks similar to awspx. Always good to have more visualisation tools
ugh access + least privilege on AWS + GCP is really hard
not made easier by the fact that debugging service accounts can sometimes require rebooting boxes or clusters
'cloud traceroute' to discover where exactly the problem is would be amazing
(in fairness there are 'least privilege' tools I haven't tried -- listed below and I recall reading about others)
1. iam access analyzer https://aws.amazon.com/blogs/security/iam-access-analyzer-ma...
2. airiam https://github.com/bridgecrewio/AirIAM
3. policy simulator https://cloud.google.com/policy-intelligence/docs/iam-simula...
Datadog also maintains the Managed Kubernetes Auditing Toolkit (MKAT), which can be installed to perform similar permission checks.
aws-security related posts
- De um mimo até a elevação de privilégios na Cloud
- Understanding Cloud Architectue
- Help a DevSecOps brother out.
- Newsletter martinmueller.dev 2022 week 21
- AWS Security Reference Architecture (AWS SRA) code examples v2.0.0 release
- How do I build a network on AWS to capture flow data?
- Testing Terraform The Right Way
-
A note from our sponsor - WorkOS
workos.com | 26 Apr 2024
Index
What are some of the best open-source aws-security projects? This list will help you:
Project | Stars | |
---|---|---|
1 | checkov | 6,512 |
2 | terrascan | 4,494 |
3 | security-study-plan | 4,108 |
4 | pacu | 4,014 |
5 | policy_sentry | 1,938 |
6 | awesome-cloud-security | 1,902 |
7 | stratus-red-team | 1,618 |
8 | matano | 1,354 |
9 | awesome-aws-security | 1,110 |
10 | aws-security-reference-architecture-examples | 922 |
11 | awspx | 865 |
12 | ElectricEye | 860 |
13 | AirIAM | 750 |
14 | awesome-cloud-security | 560 |
15 | AWS-Guide | 467 |
16 | aws-security-workshops | 426 |
17 | lazytrivy | 267 |
18 | managed-kubernetes-auditing-toolkit | 229 |
19 | rpCheckup | 157 |
20 | aws-foundations-cis-baseline | 74 |
21 | introspector | 66 |
22 | AWSXenos | 58 |
23 | aws-iam-utils | 16 |
Sponsored