SeisoLLC / goat
Seiso's Grand Opinionated AutoTester (GOAT)
☆12Updated this week
Alternatives and similar repositories for goat:
Users that are interested in goat are comparing it to the libraries listed below
- The Seiso standard python cookiecutter template☆13Updated this week
- A docker container to simplify and secure the use of Infrastructure as Code (IaC)☆70Updated this week
- A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …☆179Updated 5 months ago
- A MITRE ATT&CK Navigator export for AWS GuardDuty Findings☆137Updated 3 years ago
- Code to scan a container with CrowdStrike and return response codes indicating pass/fail status.☆37Updated this week
- A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.☆62Updated 4 years ago
- KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.☆97Updated last year
- A python module to allow for easy integration with the Lacework APIs.☆19Updated 7 months ago
- Open Cloud Security Posture Management Engine☆337Updated 3 years ago
- ☆112Updated last month
- ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach☆150Updated last year
- Serverless Functions for establishing Reverse Shells to Lambda, Azure Functions, and Google Cloud Functions☆236Updated this week
- ☆383Updated last year
- Create custom auto-remediation solutions using serverless functions in the cloud.☆53Updated last year
- Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).☆141Updated 10 months ago
- Cloud Commotion intends to cause chaos to simulate security incidents☆143Updated 8 months ago
- The SOCless automation framework☆137Updated last week
- A full insecure kubernetes application for testing security tools☆66Updated this week
- Built-in Panther detection rules and policies☆359Updated this week
- Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. Cl…☆161Updated 9 months ago
- IAMFinder enumerates and finds users and IAM roles in a target AWS account.☆110Updated 4 years ago
- ☆12Updated last year
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆171Updated 2 months ago
- List of vendors that do not allow IMDSv2 enforcement☆141Updated 9 months ago
- ☆370Updated 11 months ago
- Documentation on the Cyber Defense Matrix☆24Updated last year
- A simple threat modeling tool to help humans to reduce time-to-value when threat modeling☆513Updated last week
- 🖇️ STRIDE vs. ASVS equivalence table☆75Updated 5 months ago
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…☆140Updated this week
- Open source security career ladders☆115Updated 2 years ago