ScaleSec / terraform_aws_scp
AWS Organizations Service Control Policies (SCPs) written in HashiCorp Terraform.
☆232Updated last month
Related projects ⓘ
Alternatives and complementary repositories for terraform_aws_scp
- Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frame…☆224Updated last year
- AWS Security Analytics Bootstrap enables customers to perform security investigations on AWS service logs by providing an Amazon Athena a…☆238Updated this week
- Code examples for the AWS Security Blog post: How to use CI/CD to deploy and configure AWS security services with Terraform☆95Updated 3 years ago
- AWS Inventory and Compliance Framework☆223Updated last year
- Assisted Log Enabler for AWS - Find AWS resources that are not logging, and turn them on.☆225Updated this week
- Example AWS Service control policies to get started or mature your usage of AWS SCPs.☆223Updated 6 months ago
- Access Undenied parses AWS AccessDenied CloudTrail events, explains the reasons for them, and offers actionable remediation steps. Open-s…☆260Updated last year
- Collection of semi-useful Service Control Policies and scripts to manage them☆83Updated 4 months ago
- Cloud Custodian policy that logs unused security groups☆139Updated 3 years ago
- Example policies demonstrating how to implement a data perimeter on AWS.☆125Updated last week
- AWS IAM Permissions Guardrails https://aws-samples.github.io/aws-iam-permissions-guardrails/☆122Updated last year
- SCP management tool☆126Updated last year
- Scripts to quickly fix security and compliance issues☆104Updated 11 months ago
- ☆279Updated last year
- ☆151Updated last year
- Crowdsourced list of sensitive IAM Actions☆139Updated 3 weeks ago
- Get notified when actions are taken in the AWS Console.☆252Updated 2 weeks ago
- Automated Security Response on AWS is an add-on solution that works with AWS Security Hub to provide a ready-to-deploy architecture and a…☆399Updated this week
- ☆133Updated last month
- This script automates the process of running the Security Hub multi-account workflow across a group of accounts that are in your control☆271Updated 10 months ago
- Pre-configured response & remediation playbooks for AWS Security Hub☆65Updated 3 years ago
- A command line tool that validates AWS IAM Policies in a Terraform template against AWS IAM best practices☆298Updated 4 months ago
- Enables AWS Config and adds managed config rules with good defaults.☆231Updated 4 months ago
- List of vendors that do not allow IMDSv2 enforcement☆142Updated 6 months ago
- AWS managed IAM policies☆127Updated 2 years ago
- This script automates the process of running the GuardDuty multi-account workflow across a group of accounts that are in your control☆130Updated 2 months ago
- Manage AWS Config Rules at scale in AWS multi-account and/or multi-region environment; with fully configurable deployment (RuleSets) and …☆276Updated 4 years ago
- ☆112Updated this week
- This repository can be used to generate and evaluate findings detected by Amazon GuardDuty☆345Updated 4 months ago
- ☆140Updated 5 months ago