OpenCSPM / opencspm-darkbit-community-controls
OpenCSPM Community Controls
☆14Updated 3 years ago
Related projects: ⓘ
- Fun tools around the EBS Direct API☆17Updated 3 years ago
- AWS Incident Response Kit (AIRK) - AWS Incident Response☆21Updated 4 years ago
- A combined list of helpful awscli commands from Scott Piper's flaws.cloud exercise as well as from Beau Bullock's Breaching the Cloud Tra…☆18Updated 3 years ago
- Visualize your Terraform files☆34Updated 4 years ago
- Slides, Cheatsheet and Resources from our Blackhat EU talk☆38Updated 4 years ago
- Manage GuardDuty At Enterprise Scale☆22Updated 4 years ago
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Updated 2 years ago
- Updated incident response generator for training classes☆41Updated 3 years ago
- defendA Data Lake. A firehose pipeline to athena providing enrichment and normalization for security events☆16Updated last year
- Defending IaaS with ATT&CK is a project to create a collection of ATT&CK techniques relevant to a Linux IaaS environment, as well as a me…☆13Updated 6 months ago
- A meta-database collecting resources that compile lists of breaches☆17Updated 5 months ago
- AWS EKS Cluster Forensics☆22Updated 3 years ago
- ☆28Updated 4 years ago
- Security Alert Decoration☆25Updated 4 months ago
- Common Golang Packages for use by the Various Cloud Nuke Tools☆22Updated last week
- Subscriptions to collect Windows Event Logs mapped to the MITRE ATT&CK model☆12Updated 3 years ago
- Varna: Quick & Cheap AWS CloudTrail Monitoring with Event Query Language (EQL)☆50Updated last year
- S3Insights is a platform for efficiently deriving security insights about S3 data through metadata analysis☆11Updated 2 weeks ago
- A toolset to juggle AWS roles for persistent access☆47Updated last month
- PoC for gaining persistency on vulnerable Lambdas☆30Updated 3 years ago
- Knowledge Report Alert & Normalization Generator☆27Updated 6 months ago
- A set of AWS resources for testing the Log4Shell vulnerability, deployable with terraform☆12Updated 2 years ago
- CdkGoat is Bridgecrew's "Vulnerable by Design" AWS CDK repository. CdkGoat is a learning and training project that demonstrates how commo…☆43Updated last year
- Core incident handling plugins for aws_ir cli, incident pony, and more.☆21Updated 6 years ago
- GCP CSPM using Google Sheets☆33Updated 3 months ago
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆84Updated 5 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆74Updated 2 years ago
- Tools for AWS forensics☆64Updated 8 years ago
- A command line security audit tool for Amazon Web Services☆79Updated 5 years ago
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.☆61Updated 5 years ago