gtmnagalla's repositories
aws-security-hub-automated-response-and-remediation
AWS Security Hub Automated Response and Remediation is an add-on solution that works with AWS Security Hub to provide a ready-to-deploy architecture and a library of automated playbooks. The solution makes it easier for AWS Security Hub customers to resolve common security findings and to improve their security posture in AWS.
aws-audit-automation
Tools to automate AWS Cloud security assessments
Benchmark
The OWASP Benchmark is a test suite designed to verify the speed and accuracy of vulnerability detection tools. The initial version is intended to support Java Static Analysis Security Testing Tools (SAST). A future release will support Dynamic Analysis Security Testing Tools (DAST), like OWASP ZAP, and Interactive Analysis Security Testing Tools (IAST). The goal is that this test application is fully runnable and all the vulnerabilities are actually exploitable so its a fair test for any kind of vulnerability detection tool.
CIS-140
CIS AWS Foundations Benchmark v1.4.0 Remediations
DNS-over-TLS-proxy
DNS-over-TLS proxy
docker-bench-security
The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production.
enumerate-iam
Enumerate the permissions associated with AWS credential set
prowler
Prowler is an Open Source security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 240 controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.
restricted-ssh-autoremediation
disallow unrestricted incoming SSH traffic
vapi
vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.