Alternatives and similar repositories for opencspm:

Users that are interested in opencspm are comparing it to the libraries listed below

• easttimor / aws-incident-response
  ☆368Updated 10 months ago
• openraven / magpie
  A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …
  ☆178Updated 4 months ago
• threatcl / threatcl
  Documenting your Threat Models with HCL
  ☆412Updated 4 months ago
• joshlarsen / aws-recon
  Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.
  ☆536Updated this week
• SummitRoute / aws_exposable_resources
  Resource types that can be publicly exposed on AWS
  ☆320Updated 2 years ago
• awslabs / aws-cloudsaga
  AWS CloudSaga - Simulate security events in AWS
  ☆446Updated this week
• tenable / KaiMonkey
  KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.
  ☆97Updated last year
• orcasecurity / orca-toolbox
  ☆111Updated this week
• ScaleSec / terraform_aws_scp
  AWS Organizations Service Control Policies (SCPs) written in HashiCorp Terraform.
  ☆234Updated 3 months ago
• turnerlabs / antiope
  AWS Inventory and Compliance Framework
  ☆223Updated last year
• salesforce / aws-allowlister
  Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frame…
  ☆225Updated last year
• trustoncloud / threatmodel-for-aws-s3
  ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach
  ☆151Updated last year
• dowjones / hammer
  Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)
  ☆437Updated last year
• salesforce / metabadger
  Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
  ☆141Updated 9 months ago
• WithSecureLabs / awspx
  A graph-based tool for visualizing effective access and resource relationships in AWS environments.
  ☆927Updated 2 years ago
• SummitRoute / imdsv2_wall_of_shame
  List of vendors that do not allow IMDSv2 enforcement
  ☆142Updated 8 months ago
• amrandazz / attack-guardduty-navigator
  A MITRE ATT&CK Navigator export for AWS GuardDuty Findings
  ☆137Updated 3 years ago
• awslabs / aws-automated-incident-response-and-forensics
  ☆378Updated last year
• rams3sh / Aaia
  AWS Identity and Access Management Visualizer and Anomaly Finder
  ☆289Updated 6 months ago
• ihamburglar / Redboto
  Red Team Scripts for AWS.
  ☆166Updated 4 years ago
• pumasecurity / serverless-prey
  Serverless Functions for establishing Reverse Shells to Lambda, Azure Functions, and Google Cloud Functions
  ☆236Updated last month
• WithSecureLabs / leonidas
  Automated Attack Simulation in the Cloud, complete with detection use cases.
  ☆550Updated last month
• awslabs / aws-security-analytics-bootstrap
  AWS Security Analytics Bootstrap enables customers to perform security investigations on AWS service logs by providing an Amazon Athena a…
  ☆243Updated this week
• iacsecurity / tool-compare
  ☆281Updated 2 years ago
• duo-labs / cloudtracker
  CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.
  ☆891Updated 3 years ago
• tenable / cnappgoat
  CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.
  ☆271Updated 4 months ago
• PaloAltoNetworks / IAM-Deescalate
  IAM-Deescalate helps mitigate privilege escalation risk in AWS identity and access management (IAM)
  ☆96Updated 2 years ago
• panther-labs / panther-analysis
  Built-in Panther detection rules and policies
  ☆349Updated this week
• awslabs / aws-security-assessment-solution
  An AWS tool to help you create a point in time assessment of your AWS account using Prowler.
  ☆526Updated 2 months ago
• duo-labs / cloudtrail-partitioner
  ☆152Updated last year