ScaleSec / terraform_aws_scp
AWS Organizations Service Control Policies (SCPs) written in HashiCorp Terraform.
☆237Updated 5 months ago
Alternatives and similar repositories for terraform_aws_scp:
Users that are interested in terraform_aws_scp are comparing it to the libraries listed below
- Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frame…☆225Updated last year
- SCP management tool☆131Updated last year
- AWS Security Analytics Bootstrap enables customers to perform security investigations on AWS service logs by providing an Amazon Athena a…☆246Updated this week
- Example policies demonstrating how to implement a data perimeter on AWS.☆150Updated last week
- Collection of semi-useful Service Control Policies and scripts to manage them☆94Updated last month
- AWS Inventory and Compliance Framework☆224Updated last year
- Example AWS Service control policies to get started or mature your usage of AWS SCPs.☆235Updated 2 weeks ago
- ☆282Updated 2 years ago
- Code examples for the AWS Security Blog post: How to use CI/CD to deploy and configure AWS security services with Terraform☆96Updated 3 years ago
- Access Undenied parses AWS AccessDenied CloudTrail events, explains the reasons for them, and offers actionable remediation steps. Open-s…☆262Updated 2 years ago
- AWS IAM Permissions Guardrails https://aws-samples.github.io/aws-iam-permissions-guardrails/☆124Updated last year
- Cloud Custodian policy that logs unused security groups☆142Updated 3 years ago
- Scripts to quickly fix security and compliance issues☆105Updated last year
- Collection of example Service Control Policies (SCPs) that are useful for sandbox and training AWS accounts.☆147Updated 3 months ago
- Get notified when actions are taken in the AWS Console.☆312Updated 2 months ago
- A command line tool that validates AWS IAM Policies in a Terraform template against AWS IAM best practices☆325Updated last month
- Uses the AWS Cloud Control API to list resources that are present in a given AWS account and region(s). Discovered resources are written …☆158Updated this week
- Runs IAM policy linting and security checks against either a single AWS account or a set of member accounts of an AWS Organization.☆138Updated last week
- Assisted Log Enabler for AWS - Find AWS resources that are not logging, and turn them on.☆253Updated this week
- ☆154Updated last year
- Crowdsourced list of sensitive IAM Actions☆142Updated 4 months ago
- Automate permissions to your cloud and critical applications.☆239Updated last year
- Automated Security Response on AWS is an add-on solution that works with AWS Security Hub to provide a ready-to-deploy architecture and a…☆418Updated last month
- AWS Config resource schema define the properties and types of AWS Config resource configuration items (CIs). Resource CI schema are used …☆244Updated this week
- This repository can be used to generate and evaluate findings detected by Amazon GuardDuty☆382Updated last week
- Pre-configured response & remediation playbooks for AWS Security Hub☆65Updated 3 years ago
- Resource types that can be publicly exposed on AWS☆324Updated 3 years ago
- AWS CloudSaga - Simulate security events in AWS☆451Updated this week
- Enables AWS Config and adds managed config rules with good defaults.☆231Updated 2 months ago
- ☆112Updated 2 months ago