aws-security

There are 37 repositories under aws-security topic.

bridgecrewio / checkov
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
aws aws-security azure cloudformation compliance devops gcp hacktoberfest infrastructure-as-code kubernetes scans static-analysis terraform
Language:Python 6761
terrascan
tenable / terrascan
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
security-tools infrastructure-as-code devsecops devops security terraform aws cloudsecurity cloud-security terrascan infrastructure security-violations architecture kubernetes iac sast azure-security aws-security gcp-security scans
Language:Go 4615
Netflix / security_monkey
Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.
aws python aws-s3 aws-ec2 aws-sqs aws-vpc aws-iam boto3 boto botocore aws-security aws-policy-tracking security
Language:Python 4351
jassics / security-study-plan
Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...
api-security application-security appsec appsec-tutorials aws-security azure-security cybersecurity cybersecurity-education devsecops-university gcp-security infosec pentesting security-testing study-guide study-plan study-planner
4222
RhinoSecurityLabs / pacu
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
aws aws-security penetration-testing python security
Language:Python 4212
4ndersonLin / awesome-cloud-security
🛡️ Awesome Cloud Security Resources ⚔️
aws aws-security azure azure-security cloud-computing cloud-security cybersecurity gcp gcp-security security
1986
salesforce / policy_sentry
IAM Least Privilege Policy Generator
aws iam cloud security cloudsecurity iam-policy aws-security salesforce hacktoberfest
Language:Python 1957
salesforce / cloudsplaining
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
aws aws-iam aws-security cloud cloud-security hacktoberfest iam salesforce security
Language:JavaScript 1899
DataDog / stratus-red-team
:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud
aws adversary-emulation purple-team mitre-attack cloud-security cloud-native-security detection-engineering threat-detection security aws-security azure-security kubernetes-security gcp-security
Language:Go 1684
matano
matanolabs / matano
Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
alerting apache-iceberg aws aws-security big-data cloud cloud-native cloud-security cybersecurity detection-engineering dfir log-analytics log-management rust secops security security-tools serverless siem threat-hunting
Language:Rust 1411
pacbot
tmobile / pacbot
PacBot (Policy as Code Bot)
angularjs aws aws-security cloud cloud-auditing cloud-compliance-reporting cloud-native cloud-security continous-compliance java policy-as-code security security-automation spring-boot
Language:Java 1277
awesome-aws-security
jassics / awesome-aws-security
Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
awesome awesome-list awesome-lists aws aws-auditing aws-security aws-security-automation aws-security-resources cloud-security security security-tools
1195
SecurityFTW / cs-suite
Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.
aws-audit aws-security azure azure-audit azure-security cloud-security gcp gcp-audit-report security security-audit security-tools
Language:Shell 1134
bridgecrewio / terragoat
TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
aws-security azure-security cloud-security devsecops gcp-security goat terraform
Language:HCL 1122
aws-samples / aws-security-reference-architecture-examples
Example solutions demonstrating how to implement patterns within the AWS Security Reference Architecture guide using CloudFormation (including Customizations for AWS Control Tower) and Terraform.
aws aws-cloudformation aws-control-tower aws-security aws-security-automation
Language:Python 949
breaking-and-pwning-apps-and-servers-aws-azure-training
appsecco / breaking-and-pwning-apps-and-servers-aws-azure-training
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
application-security aws-security azure-security free opensource penetration-testing pentesting
Language:CSS 918
ElectricEye
jonrau1 / ElectricEye
ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks
security-tools security-audit cloud-security security-monitoring aws-security security-hub cloud-compliance-reporting cloud-auditing security-engineering devsecops aws-audit aws-compliance compliance attack-surface-management aws gcp-security multicloud saas-security google-cloud-security asset-management
Language:Python 916
WithSecureLabs / awspx
A graph-based tool for visualizing effective access and resource relationships in AWS environments.
aws aws-security graph-theory pentesting
Language:Python 892
bridgecrewio / AirIAM
Least privilege AWS IAM Terraformer
aws aws-iam aws-security aws-security-automation bridgecrew hacktoberfest iam privileges-model terraform
Language:Python 763
Funkmyster / awesome-cloud-security
A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.
cloud-security aws security information-security waf dlp logging cloud elasticsearch awesome awesome-list aws-security data-loss-prevention security-standards nist google-cloud-security hacktoberfest hacktoberfest2023 oracle-cloud-security hacktoberfestcebu
569
HXSecurity / TerraformGoat
TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.
aws-security azure-security cloud-security cloudsecurity gcp gcp-security kubernetes-security security terraform
Language:HCL 512
AWS-Guide
mikeroyal / AWS-Guide
Amazon Web Services (AWS) Guide. Learn all about Amazon Web Services Tools, Services, and Certifications.
aws aws-lambda aws-ec2 aws-cli aws-cdk aws-dynamodb aws-apigateway aws-sdk aws-certification amazon-web-services aws-security aws-serverless credentials secrets cloud-computing aws-s3 cloudwatch cloudformation dynamodb awesome-list
Language:Java 491
dowjones / hammer
Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)
aws aws-security cloudsecurity devsecops
Language:Python 433
cfripper
Skyscanner / cfripper
Library and CLI tool for analysing CloudFormation templates and check them for security compliance.
aws aws-security cfripper cloud-governance cloudformation cloudformation-linter cloudformation-template compliance static-analysis
Language:Python 393
cado-security / cloudgrep
cloudgrep is grep for cloud storage
aws aws-s3 aws-security azure azure-security cloud cloud-security gcp gcp-security grep search
Language:Python 298
DataDog / managed-kubernetes-auditing-toolkit
All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
aws-eks aws-security eks kubernetes kubernetes-security managed-kubernetes
Language:Go 280
lazytrivy
owenrumney / lazytrivy
Vulnerability scanning just got lazier
security-tools trivy tui golang golang-cli security-auditing-tool aws-security scanner misconfigurations staticanalysis vulnerability-scanners docker podman
Language:Go 276
cybersecurity-roadmap
jassics / cybersecurity-roadmap
Skills and career roadmap for various security roles like application security, cloud security, DevSecOps, security engineer, security researchers, pentesting, api security, network security, mobile security and so on with helpful resources, guidelines
security-tools security-automation aws-security cloud-security network-security devsecops interview-questions application-security cybersecurity-career-path cybersecurity-awareness security security-questions career-roadmaps career-development career-guide career-plan
261
festin
cr0hn / festin
FestIn - Open S3 Bucket Scanner
aws-security s3 s3-bucket s3-security
Language:Python 225
mlevit / aws-auto-remediate
Open source application to instantly remediate common security issues through the use of AWS Config
aws aws-compliance aws-security cloud lambda remediation security security-tools serverless serverless-framework
Language:Python 221
rpCheckup
goldfiglabs / rpCheckup
rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.
aws infosec ec2 s3 resourcepolicy cloudsecurity aws-security cspm
Language:Go 157
attacking-cloudgoat2
appsecco / attacking-cloudgoat2
A step-by-step walkthrough of CloudGoat 2.0 scenarios.
cloud-security cloudgoat aws-security walkthrough pentesting pentesting-resources aws documentation
132
riskprofiler / CloudFrontier
Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.
aws gcp azure digitalocean cybersecurity cloudsecurity shadowrisk shadow-risk cyber-security cloud-security serverless dynamodb lambda-functions api-gateway serverless-framework aws-security azure-security gcp-security oracle
Language:Lua 119
bridgecrewio / cfngoat
Cfngoat is Bridgecrew's "Vulnerable by Design" Cloudformation repository. Cfngoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
aws-security cloudformation cloudsecurity devsecops
92
adanalvarez / TrailDiscover
An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and security implications
aws aws-security cloud-security mitre-attack security
Language:Python 90
Appliscale / cloud-security-audit
A command line security audit tool for Amazon Web Services
amazon-web-services aws aws-security cloud cloud-security-audit command-line ec2 go golang s3 security security-audit tool
Language:Go 80

aws-security

bridgecrewio / checkov

tenable / terrascan

Netflix / security_monkey

jassics / security-study-plan

RhinoSecurityLabs / pacu

4ndersonLin / awesome-cloud-security

salesforce / policy_sentry

salesforce / cloudsplaining

DataDog / stratus-red-team

matanolabs / matano

tmobile / pacbot

jassics / awesome-aws-security

SecurityFTW / cs-suite

bridgecrewio / terragoat

aws-samples / aws-security-reference-architecture-examples

appsecco / breaking-and-pwning-apps-and-servers-aws-azure-training

jonrau1 / ElectricEye

WithSecureLabs / awspx

bridgecrewio / AirIAM

Funkmyster / awesome-cloud-security

HXSecurity / TerraformGoat

mikeroyal / AWS-Guide

dowjones / hammer

Skyscanner / cfripper

cado-security / cloudgrep

DataDog / managed-kubernetes-auditing-toolkit

owenrumney / lazytrivy

jassics / cybersecurity-roadmap

cr0hn / festin

mlevit / aws-auto-remediate

goldfiglabs / rpCheckup

appsecco / attacking-cloudgoat2

riskprofiler / CloudFrontier

bridgecrewio / cfngoat

adanalvarez / TrailDiscover

Appliscale / cloud-security-audit