Alternatives and similar repositories for aws_ir

Users that are interested in aws_ir are comparing it to the libraries listed below

• ThreatResponse / margaritashotgun
  Remote Memory Acquisition Tool
  ☆246Updated 4 years ago
• easttimor / aws-incident-response
  ☆372Updated last year
• stuhirst / awssecurity
  for AWS Security material
  ☆247Updated 3 years ago
• amrandazz / attack-guardduty-navigator
  A MITRE ATT&CK Navigator export for AWS GuardDuty Findings
  ☆137Updated 3 years ago
• turnerlabs / antiope
  AWS Inventory and Compliance Framework
  ☆224Updated last year
• dowjones / hammer
  Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)
  ☆440Updated last year
• awslabs / aws-security-automation
  Collection of scripts and resources for DevSecOps and Automated Incident Response Security
  ☆627Updated 4 years ago
• Netflix-Skunkworks / diffy
  (DEPRECATED) Diffy is a triage tool used during cloud-centric security incidents, to help digital forensics and incident response (DFIR)…
  ☆634Updated last year
• willbengtson / trailblazer-aws
  Blazing CloudTrail since 2018
  ☆138Updated 6 years ago
• Netflix-Skunkworks / aws-credential-compromise-detection
  Example detection of compromise credentials in AWS
  ☆122Updated 6 years ago
• MrSecure / review-security-groups
  A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.
  ☆62Updated 4 years ago
• OpenCSPM / opencspm
  Open Cloud Security Posture Management Engine
  ☆340Updated 3 years ago
• duo-labs / cloudtrail-partitioner
  ☆156Updated last year
• mozilla / ssm-acquire
  A python module for orchestrating content acquisitions and analysis via amazon ssm.
  ☆59Updated last year
• SummitRoute / aws_exposable_resources
  Resource types that can be publicly exposed on AWS
  ☆327Updated 3 years ago
• awslabs / aws-automated-incident-response-and-forensics
  ☆387Updated last year
• awslabs / amazon-guardduty-tester
  This repository can be used to generate and evaluate findings detected by Amazon GuardDuty
  ☆393Updated last month
• panther-labs / panther-analysis
  Built-in Panther detection rules and policies
  ☆389Updated this week
• nccgroup / G-Scout
  Google Cloud Platform Security Tool
  ☆234Updated 5 years ago
• sonofagl1tch / AWSDetonationLab
  This script is used to generate some basic detections of the aws security services
  ☆71Updated 3 years ago
• Netflix-Skunkworks / cloudtrail-anomaly
  ☆83Updated 5 years ago
• darkarnium / perimeterator
  'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.
  ☆64Updated 5 years ago
• cyberark / SkyWrapper
  SkyWrapper helps to discover suspicious creation forms and uses of temporary tokens in AWS
  ☆108Updated 4 years ago
• Netflix-Skunkworks / aardvark
  Aardvark is a multi-account AWS IAM Access Advisor API
  ☆477Updated 7 months ago
• awslabs / aws-security-analytics-bootstrap
  AWS Security Analytics Bootstrap enables customers to perform security investigations on AWS service logs by providing an Amazon Athena a…
  ☆245Updated this week
• rams3sh / Aaia
  AWS Identity and Access Management Visualizer and Anomaly Finder
  ☆295Updated 11 months ago
• amazon-archives / aws-security-benchmark
  Open source demos, concept and guidance related to the AWS CIS Foundation framework.
  ☆621Updated 5 years ago
• duo-labs / cloudtracker
  CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.
  ☆899Updated 3 years ago
• Voulnet / barq
  barq: The AWS Cloud Post Exploitation framework!
  ☆387Updated 2 years ago
• product-security-group / Security_Ladders
  Open source security career ladders
  ☆115Updated 2 years ago