#Aws-security

Showing 39 of 39 repositories tagged #aws-security, ranked by stars

bridgecrewio
bridgecrewio
checkov

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

Score
100
โ˜… 8.9k โ‘‚ 1.4k +3/day
Python
RhinoSecurityLabs
RhinoSecurityLabs
pacu

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

Score
67
โ˜… 5.3k โ‘‚ 789 +3/day
Python
tenable
tenable
terrascan

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

Score
100
โ˜… 5.2k โ‘‚ 555 โ€”
Go
jassics
jassics
security-study-plan

Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...

Score
100
โ˜… 5.0k โ‘‚ 628 +3/day
Netflix
Netflix
security_monkey

Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.

Score
33
โ˜… 4.4k โ‘‚ 782 โ€”
Python
4ndersonLin
4ndersonLin
awesome-cloud-security

๐Ÿ›ก๏ธ Awesome Cloud Security Resources โš”๏ธ

Score
83
โ˜… 2.5k โ‘‚ 373 +2/day
DataDog
DataDog
stratus-red-team

:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud

Score
96
โ˜… 2.4k โ‘‚ 307 +2/day
Go
salesforce
salesforce
cloudsplaining

Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.

Score
91
โ˜… 2.2k โ‘‚ 217 +2/day
JavaScript
salesforce
salesforce
policy_sentry

IAM Least Privilege Policy Generator

Score
87
โ˜… 2.2k โ‘‚ 154 โ€”
Python
matanolabs
matanolabs
matano

Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS

Score
0
โ˜… 1.7k โ‘‚ 121 โ€”
Rust
jassics
jassics
awesome-aws-security

Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security

Score
78
โ˜… 1.6k โ‘‚ 328 +2/day
tmobile
tmobile
pacbot

PacBot (Policy as Code Bot)

Score
65
โ˜… 1.3k โ‘‚ 281 โ€”
Java
bridgecrewio
bridgecrewio
terragoat

TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.

Score
100
โ˜… 1.3k โ‘‚ 5.8k +2/day
HCL
SecurityFTW
SecurityFTW
cs-suite

Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.

Score
61
โ˜… 1.2k โ‘‚ 209 โ€”
Shell
appsecco
appsecco
breaking-and-pwning-apps-and-servers-aws-azure-training

Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!

Score
52
โ˜… 952 โ‘‚ 255 โ€”
CSS
bridgecrewio
bridgecrewio
AirIAM

Least privilege AWS IAM Terraformer

Score
50
โ˜… 824 โ‘‚ 82 โ€”
Python
Funkmyster
Funkmyster
awesome-cloud-security

A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.

Score
48
โ˜… 666 โ‘‚ 130 โ€”
HXSecurity
HXSecurity
TerraformGoat

TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.

Score
39
โ˜… 638 โ‘‚ 94 โ€”
HCL
jassics
jassics
cybersecurity-roadmap

Skills and career roadmap for various security roles like application security, cloud security, DevSecOps, security engineer, security researchers, pentesting, api security, network security, mobile security and so on with helpful resources, guidelines

Score
74
โ˜… 427 โ‘‚ 59 +2/day
DataDog
DataDog
managed-kubernetes-auditing-toolkit

All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.

Score
75
โ˜… 384 โ‘‚ 26 โ€”
Go
awslabs
awslabs
iam-policy-autopilot

IAM Policy Autopilot is an open source static code analysis tool that helps you quickly create baseline AWS IAM policies that you can refine as your application evolves. This tool is available as a command-line utility and MCP server for use within AI coding assistants for quickly building IAM policies.

Score
0
โ˜… 376 โ‘‚ 42 โ€”
Rust
antgroup
antgroup
CloudRec

CloudRec is an open source multi-cloud security posture management (CSPM) platform designed to help organizations improve the security of their cloud environments.

Score
70
โ˜… 187 โ‘‚ 24 +1/day
Go
riskprofiler
riskprofiler
CloudFrontier

Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.

Score
35
โ˜… 134 โ‘‚ 23 โ€”
Lua
TocConsulting
TocConsulting
awsmap

A fast, comprehensive tool for mapping and inventorying AWS resources across 150+ services and all regions.

Score
0
โ˜… 95 โ‘‚ 13 โ€”
Python
Appliscale
Appliscale
cloud-security-audit

A command line security audit tool for Amazon Web Services

Score
0
โ˜… 82 โ‘‚ 14 โ€”
Go
jonrau1
jonrau1
SyntheticSun

SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, managed AWS security services and, serverless technologies to continuously prevent, detect and respond to threats.

Score
0
โ˜… 81 โ‘‚ 15 โ€”
Python
mitre
mitre
aws-foundations-cis-baseline

InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark

Score
30
โ˜… 77 โ‘‚ 29 โ€”
Ruby
CloudDefenseAI
CloudDefenseAI
AWSZeroTrustPolicy

Adaptive AWS Zero Trust Policy made easy: Auto-generate least-privilege policies based on user activity in real time! Accelerate the adoption of smart access control

Score
22
โ˜… 75 โ‘‚ 15 โ€”
Python
chick-fil-a
chick-fil-a
bovine

Building Operational Visibility Into (n) Environments

Score
17
โ˜… 69 โ‘‚ 10 โ€”
JavaScript
goldfiglabs
goldfiglabs
introspector

A schema and set of tools for using SQL to query cloud infrastructure.

Score
9
โ˜… 66 โ‘‚ 5 โ€”
Python
gebalamariusz
gebalamariusz
cloud-audit

Fast, opinionated AWS security scanner. Curated checks. Zero noise. Copy-paste fixes.

Score
43
โ˜… 65 โ‘‚ 13 +2/day
Python
AirWalk-Digital
AirWalk-Digital
AWSXenos

AWSXenos will list all the trust relationships in all the IAM roles, S3 buckets, and more

Score
4
โ˜… 64 โ‘‚ 5 โ€”
Python
ansorren
ansorren
GDPatrol

A Lambda-powered Security Orchestration framework for AWS GuardDuty

Score
13
โ˜… 53 โ‘‚ 14 โ€”
Python
0x7a6b4c
0x7a6b4c
SkyEye

When Your Vision Reaches Beyond IAM Boundary Scope in AWS Cloud

Score
26
โ˜… 47 โ‘‚ 2 โ€”
Python
OWASP
OWASP
www-project-eks-goat

OWASP EKS Goat is a deliberately vulnerable EKS cluster environment to explore AWS cloud-native security through hands-on attack and defense labs with walkthrough.

Score
57
โ˜… 45 โ‘‚ 61 โ€”
Shell
offensive-terraform
offensive-terraform
offensive-terraform.github.io

Offensive Terraform Website

Score
0
โ˜… 45 โ‘‚ 3 โ€”
JavaScript
lightspin-tech
lightspin-tech
eks-creation-engine

The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the CISO to facilitate the creation and enablement of secure EKS Clusters.

Score
25
โ˜… 41 โ‘‚ 12 โ€”
Python
stafordtituss
stafordtituss
HazProne

HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enabling you to pentest Vulnerabilities within, and hence, gain a better understanding of what could go wrong and why!!

Score
0
โ˜… 40 โ‘‚ 11 โ€”
HCL
aws-samples
aws-samples
sample-aiml-security-assessment

AI/ML and Generative AI Security Assessment Framework for AWS. Automatically audit Amazon Bedrock and SageMaker & AgentCore workloads for security best practices

Score
0
โ˜… 20 โ‘‚ 9 โ€”
HTML
Related Topics
#aws#security#cloud-security#cloud#azure-security#gcp-security#terraform#cloudsecurity#devsecops#security-tools#iam#cybersecurity

ยฉ 2026 GitRepoTrend ยท GitHub repositories by topic ยท Updated weekly