#Aws-security
Showing 39 of 39 repositories tagged #aws-security, ranked by stars
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...
Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.
๐ก๏ธ Awesome Cloud Security Resources โ๏ธ
:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
IAM Least Privilege Policy Generator
Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
PacBot (Policy as Code Bot)
TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
Least privilege AWS IAM Terraformer
A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.
TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.
Skills and career roadmap for various security roles like application security, cloud security, DevSecOps, security engineer, security researchers, pentesting, api security, network security, mobile security and so on with helpful resources, guidelines
All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
IAM Policy Autopilot is an open source static code analysis tool that helps you quickly create baseline AWS IAM policies that you can refine as your application evolves. This tool is available as a command-line utility and MCP server for use within AI coding assistants for quickly building IAM policies.
CloudRec is an open source multi-cloud security posture management (CSPM) platform designed to help organizations improve the security of their cloud environments.
Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.
A fast, comprehensive tool for mapping and inventorying AWS resources across 150+ services and all regions.
A command line security audit tool for Amazon Web Services
SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, managed AWS security services and, serverless technologies to continuously prevent, detect and respond to threats.
InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark
Adaptive AWS Zero Trust Policy made easy: Auto-generate least-privilege policies based on user activity in real time! Accelerate the adoption of smart access control
Building Operational Visibility Into (n) Environments
A schema and set of tools for using SQL to query cloud infrastructure.
Fast, opinionated AWS security scanner. Curated checks. Zero noise. Copy-paste fixes.
AWSXenos will list all the trust relationships in all the IAM roles, S3 buckets, and more
A Lambda-powered Security Orchestration framework for AWS GuardDuty
When Your Vision Reaches Beyond IAM Boundary Scope in AWS Cloud
OWASP EKS Goat is a deliberately vulnerable EKS cluster environment to explore AWS cloud-native security through hands-on attack and defense labs with walkthrough.
Offensive Terraform Website
The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the CISO to facilitate the creation and enablement of secure EKS Clusters.
HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enabling you to pentest Vulnerabilities within, and hence, gain a better understanding of what could go wrong and why!!
AI/ML and Generative AI Security Assessment Framework for AWS. Automatically audit Amazon Bedrock and SageMaker & AgentCore workloads for security best practices