Open-source projects categorized as aws-security Edit details

Top 19 aws-security Open-Source Projects

  • checkov

    Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

    Project mention: Terraform Module Template | | 2022-07-19

    Static code analysis with TFLint, tfsec and checkov.

  • terrascan

    Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

    Project mention: Top 200 Kubernetes Tools for DevOps Engineer Like You | | 2022-01-15

    TerraScan - Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure. klum - Kubernetes Lazy User Manager Kyverno - Kubernetes Native Policy Management kiosk - kiosk office Multi-Tenancy Extension For Kubernetes - Secure Cluster Sharing & Self-Service Namespace Provisioning kube-bench - CIS Kubernetes Benchmark tool kube-hunter - Pentesting tool - Hunts for security weaknesses in Kubernetes clusters kube-who-can - Show who has RBAC permissions to perform actions on different resources in Kubernetes starboard - Kubernetes-native security toolkit Simulator - Kubernetes Security Training Platform - Focussing on security mitigation RBAC Lookup - Easily find roles and cluster roles attached to any user, service account, or group name in your Kubernetes cluster Kubeaudit - kubeaudit helps you audit your Kubernetes clusters against common security controls Gangway - An application that can be used to easily enable authentication flows via OIDC for a kubernetes cluster Audit2rbac - Autogenerate RBAC policies based on Kubernetes audit logs Chartsec - Helm Chart security scanner kubestriker - Security Auditing tool Datree - CLI tool to prevent K8s misconfigurations by ensuring that manifests and Helm charts follow best practices as well as your organization’s policies Krane - Kubernetes RBAC static Analysis & visualisation tool Flaco - The Falco Project - Cloud-Native runtime security Clair - Vulnerability Static Analysis for Containers Anchore Cli - Coomand Line Interface built on top of anchore engine to manage and inspect images, policies, subscriptions and registries Project Quay - Container image registry designed to boost the security of your repositories via vulnerability scanning and tight access control Kubescape - Tool to test if Kubernetes is deployed securely according to multiple frameworks: regulatory, customized company policies and DevSecOps best practices, such as the NSA-CISA and the MITRE ATT&CK®

  • Scout APM

    Less time debugging, more time building. Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.

  • pacu

    The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

    Project mention: Should I be afraid of aws cloud as a security analyst? | | 2022-02-23

    ScoutSuite and Pacu (or Lava for Azure) are great tools and it's worth learning what they can do.

  • cloudquery

    The open-source cloud asset inventory powered by SQL.

    Project mention: Show HN: Open-source serverless security lake powered by Rust | | 2022-08-06

    Good to see security moving to data engineering. Shameless plug: we are building similar stuff but for configurations here -

  • policy_sentry

    IAM Least Privilege Policy Generator

    Project mention: Policy Sentry - IAM Least Privilege Policy Generator | | 2022-06-07

    It is an open source initiative from Salesforce. Using Policy Sentry, it is easy to automate the creation of IAM policies with little knowledge on security.

  • cloudsplaining

    Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.

    Project mention: Cloudsplaining - AWS IAM Security Assessment Tool | | 2022-06-03

    It is an open source contribution from Salesforce.

  • awesome-cloud-security

    🛡️ Awesome Cloud Security Resources ⚔️

    Project mention: GitHub - 4ndersonLin/awesome-cloud-security: 🛡️ Awesome Cloud Security Resources ⚔️ | | 2022-01-06
  • SonarLint

    Clean code begins in your IDE with SonarLint. Up your coding game and discover issues early. SonarLint is a free plugin that helps you find & fix bugs and security issues from the moment you start writing code. Install from your favorite IDE marketplace today.

  • ElectricEye

    Continuously monitor your AWS attack surface and evaluate services for configurations that can lead to degradation of confidentiality, integrity or availability. All results can be exported to Security Hub, JSON, CSV, Databases, and more for further aggregation and analysis.

    Project mention: Continuously monitor your AWS services for (bad) configurations | | 2022-03-24
  • AirIAM

    Least privilege AWS IAM Terraformer

    Project mention: AirIAM | | 2022-01-06
  • aws-security-reference-architecture-examples

    Example solutions demonstrating how to implement patterns within the AWS Security Reference Architecture guide using CloudFormation and Customizations for AWS Control Tower.

    Project mention: AWS Security Reference Architecture (AWS SRA) code examples v2.0.0 release | | 2022-03-14
  • awesome-aws-security

    Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security

  • aws-security-workshops

    A collection of the latest AWS Security workshops

    Project mention: Hands on training / exercises for AWS security? | | 2022-06-05

    I think you’re referring to Workshops like

  • awesome-cloud-security

    Curated list of awesome cloud security blogs, podcasts, standards, projects, and examples. (by Funkmyster)

    Project mention: Cloud Security | | 2021-09-19
  • rpCheckup

    rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.

  • aws-foundations-cis-baseline

    InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark v1.1.0

  • introspector

    A schema and set of tools for using SQL to query cloud infrastructure.

  • AWSXenos

    AWSXenos will list all the trust relationships in all the IAM roles and S3 buckets

    Project mention: AWS open source news and updates #81 | | 2021-09-13

    AWSXenos if you are looking for open source tools to help you understand and then tighten up your IAM policies and permissions, then check this tool out from AirWalk. AWSXenos will list all the trust relationships in all the IAM roles, and S3 buckets, in an AWS account and give you a breakdown of all the accounts that have trust relationships to your account. If you are thinking that AWS Access Analyser does this, then you are no wrong, however, they have put together some reasons why this project might help you address additional features not available in Access Analyser.

  • auto-close-aws-accounts

    Automatically close AWS Accounts when moved to a specific Organizational Unit, such as SuspendedOU or ToBeDeletedOU or BlackHole 😛

    Project mention: Newsletter 2022 week 21 | | 2022-05-29

    Nice summary of new AWS open-source-related projects. My highlight is auto-close-aws-accounts which as it makes deleting AWS accounts super easy!

  • matano

    The open-source security lake platform for AWS

    Project mention: matano: The open-source security lake platform for AWS | | 2022-08-07
NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2022-08-07.

aws-security related posts


What are some of the best open-source aws-security projects? This list will help you:

Project Stars
1 checkov 4,492
2 terrascan 3,217
3 pacu 2,902
4 cloudquery 2,387
5 policy_sentry 1,658
6 cloudsplaining 1,518
7 awesome-cloud-security 1,203
8 ElectricEye 628
9 AirIAM 613
10 aws-security-reference-architecture-examples 560
11 awesome-aws-security 376
12 aws-security-workshops 371
13 awesome-cloud-security 157
14 rpCheckup 143
15 aws-foundations-cis-baseline 70
16 introspector 57
17 AWSXenos 54
18 auto-close-aws-accounts 14
19 matano 9
Find remote jobs at our new job board There is 0 new remote jobs listed recently.
Are you hiring? Post a new remote job listing for free.
Automate your Pull Request with Mergify
Mergify is the most powerful merge queue tool that offers speculative checks, batch merges, and multiple queueing options. Coordinated with any CI and fully integrated to GitHub. Get started or request a demo!