cloudtrail

There are 6 repositories under cloudtrail topic.

toniblyx / my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
auditing aws-infrastructure aws-inventory aws-lambda cloud cloudtrail dfir iam incident-response security security-tools
Language:Shell 8698
flosell / trailscraper
A command-line tool to get valuable information out of AWS CloudTrail
aws-cloudtrail aws aws-cloudformation iam heuristic iam-actions security security-automation cloud cloudtrail cloudtrail-log-analytics cloudtrail-consumer hacktoberfest
Language:Python 762
DenizParlak / Zeus
AWS Auditing & Hardening Tool
aws aws-auditing aws-hardening cloudtrail hardening
Language:Shell 704
cloudposse / terraform-aws-cloudtrail-cloudwatch-alarms
Terraform module for creating alarms for tracking important changes and occurrences from cloudtrail.
terraform terraform-modules cis security-audit cloudwatch-metrics alarm cloudtrail slack devops
Language:HCL 202
garutilorenzo / k3s-aws-terraform-cluster
Deploy an high available K3s cluster on Amazon AWS
terraform aws k3s k3s-cluster automation spot-instances kubernetes-cluster kubernetes high-availability cluster k8s k8s-cluster terraform-aws terraform-module cloudtrail devops lambda sqs
Language:HCL 146
retro-tag
GorillaStack / retro-tag
Retrospectively tag AWS resources so you can work out who created them
aws cloudtrail tagging aws-tags
Language:Ruby 103
cloudposse / terraform-aws-cloudtrail
Terraform module to provision an AWS CloudTrail and an encrypted S3 bucket with versioning to store CloudTrail logs
terraform terraform-modules cloudtrail s3 logging hcl2
Language:HCL 97
Netflix-Skunkworks / historical
A serverless, event-driven AWS configuration collection service with configuration versioning.
aws serverless lambda security dynamodb s3 securitygroups cloudtrail events python
Language:Python 93
Graylog2 / graylog-plugin-aws
Several bundled Graylog plugins to integrate with different AWS services like CloudTrail and FlowLogs.
graylog-plugin cloudtrail aws-cloudtrail graylog amazon-web-services monitoring
Language:Java 90
fivexl / terraform-aws-cloudtrail-to-slack
Parse AWS CloudTrail events and send alerts to Slack for events that match pre-configured rules
aws cloudtrail fivexl lambda slack terraform terraform-module
Language:Python 88
lmammino / s3st
A command line utility that allows you to stream data from multiple S3 objects directly into your terminal
aws streams s3 s3-bucket s3-storage logs cloudtrail command-line
Language:JavaScript 74
CloudDefenseAI / AWSZeroTrustPolicy
Adaptive AWS Zero Trust Policy made easy: Auto-generate least-privilege policies based on user activity in real time! Accelerate the adoption of smart access control
aws aws-iam aws-security cloud cloud-security cloudtrail-log-analytics iam security clouddefense aws-policy cloudtrail cloudtrail-logs iam-policies iam-policy permissions security-audit zero-trust zero-trust-cloud zero-trust-security
Language:Python 67
cloudposse / terraform-aws-cloudtrail-s3-bucket
S3 bucket with built in IAM policy to allow CloudTrail logs
aws terraform terraform-modules cloudtrail audit-logs audit s3 bucket iam iam-policy hcl2
Language:HCL 48
dev-sec-ops
miztiik / dev-sec-ops
Advanced AWS Security Automation Resources: Used by Udemy Course 🎓
aws security automation lambda udemy-course-project guardduty security-hub cloudtrail secret-management
Language:Python 43
Snapchat / aws-support-tickets-aggregator
AWS support tickets aggregation service
aws cloudtrail
Language:Python 42
aidan- / cloudtrailbeat
Easily export AWS CloudTrail events to ElasticSearch
cloudtrail elasticsearch cloudtrail-logs cloudtrail-events elk aws
Language:Go 33
rupertbg / aws-public-account-ids
Publicly-listed AWS account IDs for easy lookup. Great for cleaning up false positives from unknown Account IDs in Cloudtrail
aws cloudtrail audit-log aws-account-management aws-accounts forensic-analysis
Language:EJS 32
ExpediaDotCom / cloudtrail-log-analytics
Cloudtrail Log Analytics using Amazon Elasticsearch Service - AWS Serverless Application
amazon-elasticsearch-service cloudtrail cloudtrail-log-analytics elasticsearch expedia sam serverless serverless-application-model serverless-applications serverless-architectures
Language:Python 31
grycap / cloudtrail-tracker
Serverless Platform for Enhanced Insights from CloudTrail Logs
serverless cloudtrail aws aws-lambda dynamodb analytics api-gateway s3-bucket
Language:Python 31
Optum / cloudig
Cloud governance reports from native services in a clear and readable digest
aws athena go governance security cloud trusted-advisor aws-config inspector ecr-scan aws-phd least-privilege cloudtrail aws-iam audit compliance reporting well-architected
Language:Go 27
GorillaStack / athena-cloudtrail-partitioner
Automate the daily partitioning of your CloudTrail bucket in Athena
aws athena aws-athena cloudtrail-logs cloudtrail partitioning gorillastack glue aws-glue
Language:JavaScript 26
aws-samples / decoupling-with-amazon-eventbridge
SVS402 - Examples from re:Invent 2020 presentation by James Beswick (@jbesw).
aws lambda serverless eventbridge cloudtrail
Language:JavaScript 25
aws-samples / near-realtime-aws-usage-anomaly-detection
Detect AWS usage anomalies in near-real time using OpenSearch Anomaly Detection and CloudTrail for improved cost management and security
anomaly-detection aws cloudtrail opensearch
Language:Python 25
guessi / cloudtrail-cli
Blazing fast single purpose cli for CloudTrail log filtering
aws cli cloudtrail github-actions golang
Language:Go 23
jonrau1 / Python-Prowler-Container
Minimalist containerized implementation of Prowler from https://github.com/toniblyx/prowler, made to run within ECS Fargate and have Secrets passed via AWS Secrets Manager
security-tools security-audit aws-cli cis-benchmark hipaa hitrust prowler aws-auditing aws-security aws-secrets-manager cloud aws well-architected cloudtrail docker fargate ecs-task
Language:HCL 19
eamonnfaherty / aws-cloudtrail-events-schema
The structure of the events from CloudTrail are similar to responses seen when using boto3. Boto3 is powered by the botocore library. The botocore library contains a data directory that describes the API calls (requests and responses). This library allows you to interact with the data directories of botocore to see the API request and responses. This is to help you write custom AWS Config rules and or CloudCustodian policies.
cloudtrail cloudwatch aws cloudcustodian
Language:Python 18
paololazzari / cloudtrail-event-fuzzy-viewer
cli tool for searching cloudtrail events using fuzzy search
aws cloudtrail fuzzy-search
Language:Shell 18
clouddrove / terraform-aws-cloudtrail
Terraform module to provision an AWS CloudTrail and an encrypted S3 bucket with versioning to store CloudTrail logs
terraform aws cloudtrail devops hcl
Language:HCL 11
clouddrove / terraform-aws-secure-baseline
Terraform module to create an Secure Basline, inclued module is alarm baseline, config baseline, and clouddtrail baseline.
aws secure secure-by-default alarm cloudtrail logs cloudtrail-logs clouddrove hcl terraform terraform-modules
Language:HCL 11
nexthink-oss / terraform-aws-cloudtrail-s3-to-kinesis
Terraform module to ship CloudTrail logs stored in a S3 bucket into a Kinesis stream for further processing and real-time analysis.
aws cloudtrail kinesis
Language:Python 9
JamesWoolfenden / terraform-aws-cloudtrail
A basic cloudtrail setup
aws cloudtrail module terraform
Language:HCL 8
linuxacademy / aws-security-webinar-June-2018
AWS Security Webinar - June 2018
cloudtrail config webinar aws security lambda
Language:Python 8
JacobHughes / terraform-auto-cloudtrail
Simple Terraform orchestration for robust CloudTrail implementation in your AWS account.
aws cloudtrail terraform
Language:HCL 7
BenjiTrapp / aws-threat-hunting
Short deep dive into Threat Hunting on AWS
aws cloudtrail detection-engineering jupyter-notebook threathunting
Language:Jupyter Notebook 6
david-wells-1 / terraform-aws-cloudtrail-with-alarms-and-sns
Terraform module for AWS CloudTrail with CloudWatch Alarms and an SNS Topic
aws cloudtrail module terraform
Language:HCL 6
rhythmictech / terraform-aws-cloudtrail-logging
Configure CloudTrail logging to CloudWatch Logs and S3
terraform terraform-modules terraform-module aws logging cloudtrail
Language:HCL 6

cloudtrail

toniblyx / my-arsenal-of-aws-security-tools

flosell / trailscraper

DenizParlak / Zeus

cloudposse / terraform-aws-cloudtrail-cloudwatch-alarms

garutilorenzo / k3s-aws-terraform-cluster

GorillaStack / retro-tag

cloudposse / terraform-aws-cloudtrail

Netflix-Skunkworks / historical

Graylog2 / graylog-plugin-aws

fivexl / terraform-aws-cloudtrail-to-slack

lmammino / s3st

CloudDefenseAI / AWSZeroTrustPolicy

cloudposse / terraform-aws-cloudtrail-s3-bucket

miztiik / dev-sec-ops

Snapchat / aws-support-tickets-aggregator

aidan- / cloudtrailbeat

rupertbg / aws-public-account-ids

ExpediaDotCom / cloudtrail-log-analytics

grycap / cloudtrail-tracker

Optum / cloudig

GorillaStack / athena-cloudtrail-partitioner

aws-samples / decoupling-with-amazon-eventbridge

aws-samples / near-realtime-aws-usage-anomaly-detection

guessi / cloudtrail-cli

jonrau1 / Python-Prowler-Container

eamonnfaherty / aws-cloudtrail-events-schema

paololazzari / cloudtrail-event-fuzzy-viewer

clouddrove / terraform-aws-cloudtrail

clouddrove / terraform-aws-secure-baseline

nexthink-oss / terraform-aws-cloudtrail-s3-to-kinesis

JamesWoolfenden / terraform-aws-cloudtrail

linuxacademy / aws-security-webinar-June-2018

JacobHughes / terraform-auto-cloudtrail

BenjiTrapp / aws-threat-hunting

david-wells-1 / terraform-aws-cloudtrail-with-alarms-and-sns

rhythmictech / terraform-aws-cloudtrail-logging