Alternatives and similar repositories for enterprise-reference-stack-for-aws

Users that are interested in enterprise-reference-stack-for-aws are comparing it to the libraries listed below

• avishayil / cdk-goat
  Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure
  ☆47Updated last year
• offensive-terraform / offensive-terraform.github.io
  Offensive Terraform Website
  ☆45Updated 5 years ago
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆61Updated 2 years ago
• hashicorp-forge / semgrep-rules
  HashiCorp-relevant rules for the Semgrep code analysis tool
  ☆42Updated 2 years ago
• tenchi-security / camp
  CloudSplaining on AWS Managed Policies
  ☆44Updated last month
• aws-samples / aws-cognito-okta-federation
  ☆24Updated last year
• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆71Updated 2 years ago
• awslabs / Chatbot-to-help-security-teams-perform-vulnerability-assessments
  ☆28Updated 3 weeks ago
• Fennerr / PMapper
  A tool for quickly evaluating IAM permissions in AWS.
  ☆74Updated last year
• hotnops / AWSRoleJuggler
  A toolset to juggle AWS roles for persistent access
  ☆60Updated last year
• ramimac / breach-list-database
  A meta-database collecting resources that compile lists of breaches
  ☆21Updated 11 months ago
• praetorian-inc / snowcat
  a tool to audit the istio service mesh
  ☆173Updated 3 years ago
• turbot / steampipe-mod-aws-perimeter
  Is your AWS perimeter secure? Use Powerpipe and Steampipe to check your AWS accounts for public resources, resources shared with untrust…
  ☆112Updated last month
• anunay-bhatt / secure-serverless-reference-architecture
  A walkthrough of security controls for a serverless architecture via a demo application
  ☆11Updated 3 years ago
• ScaleSec / project_lockdown
  GCP Auto Remediation Suite for High Risk Events
  ☆43Updated 4 years ago
• salesforce / metabadger
  Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
  ☆143Updated 5 months ago
• primeharbor / breaches.cloud
  https://breaches.cloud
  ☆42Updated last year
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 3 years ago
• talbeerysec / STS-token-decoder
  AWS STS token decoder
  ☆42Updated 7 months ago
• kaakaww / hawkscan-examples
  📖 A repo of configuration examples for StackHawk's Hawkscan!
  ☆17Updated last month
• GoogleCloudPlatform / assured-workloads-terraform
  ☆18Updated last year
• PaloAltoNetworks / IAM-Deescalate
  IAM-Deescalate helps mitigate privilege escalation risk in AWS identity and access management (IAM)
  ☆98Updated 3 years ago
• SecurityRunners / awsdocs
  Repository to archive AWS Documentation for local use
  ☆49Updated last year
• TinderSec / oidc-scanner-aws
  ☆49Updated 2 years ago
• StateFarmIns / CLAWS
  This application was built to help reduce the amount of time it takes to review AWS Lambda code.
  ☆61Updated 11 months ago
• CloudWanderer-io / PolicyGlass
  PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…
  ☆60Updated 3 years ago
• kapilduraphe / mcp-watch
  A comprehensive security scanner for Model Context Protocol (MCP) servers that detects vulnerabilities and security issues in your MCP se…
  ☆102Updated this week
• tradichel / SecurityMetricsAutomation
  ☆41Updated 2 months ago
• Frichetten / aws-api-models
  A collection of documented and undocumented AWS API models
  ☆37Updated 11 months ago
• Permiso-io-tools / LogLicker
  Tool for obfuscating and deobfuscating data.
  ☆73Updated last year