Alternatives and similar repositories for opencspm

Users that are interested in opencspm are comparing it to the libraries listed below

• openraven / magpie
  A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …
  ☆191Updated last year
• easttimor / aws-incident-response
  ☆374Updated last year
• awslabs / aws-cloudsaga
  AWS CloudSaga - Simulate security events in AWS
  ☆468Updated this week
• SummitRoute / aws_exposable_resources
  Resource types that can be publicly exposed on AWS
  ☆328Updated 3 years ago
• trustoncloud / threatmodel-for-aws-s3
  Threat model for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach
  ☆157Updated last year
• domain-protect / domain-protect
  OWASP Domain Protect - prevent subdomain takeover
  ☆398Updated 8 months ago
• joshlarsen / aws-recon
  Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.
  ☆549Updated 2 months ago
• turnerlabs / antiope
  AWS Inventory and Compliance Framework
  ☆225Updated 2 years ago
• threatcl / threatcl
  Documenting your Threat Models with HCL
  ☆433Updated 3 months ago
• twilio-labs / socless
  The SOCless automation framework
  ☆140Updated 7 months ago
• dowjones / hammer
  Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)
  ☆443Updated 2 years ago
• salesforce / aws-allowlister
  Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frame…
  ☆225Updated 2 years ago
• orcasecurity / orca-toolbox
  ☆121Updated 3 months ago
• ScaleSec / terraform_aws_scp
  AWS Organizations Service Control Policies (SCPs) written in HashiCorp Terraform.
  ☆244Updated 10 months ago
• awslabs / aws-security-analytics-bootstrap
  AWS Security Analytics Bootstrap enables customers to perform security investigations on AWS service logs by providing an Amazon Athena a…
  ☆255Updated last week
• rams3sh / Aaia
  AWS Identity and Access Management Visualizer and Anomaly Finder
  ☆297Updated last year
• SummitRoute / imdsv2_wall_of_shame
  List of vendors that do not allow IMDSv2 enforcement
  ☆143Updated last year
• awslabs / amazon-guardduty-tester
  This repository can be used to generate and evaluate findings detected by Amazon GuardDuty
  ☆408Updated 2 months ago
• tenable / KaiMonkey
  KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.
  ☆103Updated last year
• salesforce / metabadger
  Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
  ☆143Updated 4 months ago
• pumasecurity / serverless-prey
  Serverless Functions for establishing Reverse Shells to Lambda, Azure Functions, and Google Cloud Functions
  ☆249Updated last month
• tenable / cnappgoat
  CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.
  ☆288Updated last year
• duo-labs / cloudtrail-partitioner
  ☆156Updated 2 years ago
• CrowdStrike / Cloud-AWS
  A collection of projects supporting AWS Integration
  ☆155Updated last week
• MrSecure / review-security-groups
  A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.
  ☆63Updated 5 years ago
• iacsecurity / tool-compare
  ☆286Updated 2 years ago
• wiz-sec / open-cvdb
  An open project to list all publicly known cloud vulnerabilities and CSP security issues
  ☆355Updated 3 months ago
• jonrau1 / AWS-DevSecOps-Factory
  Sample DevSecOps pipelines (heavily biased on the "Sec") for various stacks and tools using open-source security tools and AWS native ser…
  ☆72Updated 3 years ago
• awslabs / aws-automated-incident-response-and-forensics
  ☆393Updated last year
• threatspec / threatspec
  threatspec - continuous threat modeling, through code
  ☆366Updated 4 years ago