BenjiTrapp / AWS-LoginGuard

Ever wondered who is lurking around in your AWS Account? Get notified if someone strange login activities occured in your AWS Account

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Python application CodeQL Pylint

AWS-LoginGuard

Ever wondered who is lurking around in your AWS Account? Get notified if someone strange login activities occured in your AWS Account

If the event AwsConsoleSignin get's triggered, the Event Bridge shall trigger a lambda function that gathers some info about "who is logging in" and try to check if it's a Pentester. Most of the guys are forgetting to disguise their user agents. In this first version we stay "detective", in later version also an automatic remediation could be implemented. Let's see how this script evolves :)

Todo:

  1. Make a fancier readme
  2. Add a Terraform Script to deploy everything

About

Ever wondered who is lurking around in your AWS Account? Get notified if someone strange login activities occured in your AWS Account


Languages

Language:Python 74.1%Language:Shell 25.9%