Alternatives and similar repositories for aws_ir

Users that are interested in aws_ir are comparing it to the libraries listed below

• ThreatResponse / margaritashotgun
  Remote Memory Acquisition Tool
  ☆247Updated 4 years ago
• amrandazz / attack-guardduty-navigator
  A MITRE ATT&CK Navigator export for AWS GuardDuty Findings
  ☆137Updated 3 years ago
• easttimor / aws-incident-response
  ☆373Updated last year
• stuhirst / awssecurity
  for AWS Security material
  ☆248Updated 3 years ago
• MrSecure / review-security-groups
  A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.
  ☆62Updated 5 years ago
• awslabs / aws-security-automation
  Collection of scripts and resources for DevSecOps and Automated Incident Response Security
  ☆626Updated 4 years ago
• Netflix-Skunkworks / aws-credential-compromise-detection
  Example detection of compromise credentials in AWS
  ☆122Updated 6 years ago
• willbengtson / trailblazer-aws
  Blazing CloudTrail since 2018
  ☆138Updated 6 years ago
• mozilla / ssm-acquire
  A python module for orchestrating content acquisitions and analysis via amazon ssm.
  ☆59Updated last year
• Netflix-Skunkworks / diffy
  (DEPRECATED) Diffy is a triage tool used during cloud-centric security incidents, to help digital forensics and incident response (DFIR)…
  ☆634Updated last year
• dowjones / hammer
  Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)
  ☆441Updated last year
• sonofagl1tch / AWSDetonationLab
  This script is used to generate some basic detections of the aws security services
  ☆71Updated 3 years ago
• nccgroup / G-Scout
  Google Cloud Platform Security Tool
  ☆234Updated 5 years ago
• twilio-labs / socless
  The SOCless automation framework
  ☆140Updated 4 months ago
• OpenCSPM / opencspm
  Open Cloud Security Posture Management Engine
  ☆340Updated 3 years ago
• spotify / terraform-google-grr
  A Terraform module for GRR: the distributed incident forensics and response framework
  ☆51Updated 5 years ago
• turnerlabs / antiope
  AWS Inventory and Compliance Framework
  ☆224Updated last year
• duo-labs / cloudtrail-partitioner
  ☆156Updated last year
• SummitRoute / aws_exposable_resources
  Resource types that can be publicly exposed on AWS
  ☆327Updated 3 years ago
• splunk / splunk-for-securityHub
  ☆37Updated 5 years ago
• Netflix-Skunkworks / cloudtrail-anomaly
  ☆83Updated 5 years ago
• product-security-group / Security_Ladders
  Open source security career ladders
  ☆115Updated 2 years ago
• darkarnium / perimeterator
  'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.
  ☆64Updated 5 years ago
• awslabs / aws-automated-incident-response-and-forensics
  ☆388Updated last year
• awslabs / amazon-guardduty-tester
  This repository can be used to generate and evaluate findings detected by Amazon GuardDuty
  ☆395Updated 2 months ago
• z0ph / aws-security-toolbox
  AWS Security Tools (AST) in a simple Docker container.
  ☆286Updated 4 years ago
• owasp-cloud-security / owasp-cloud-security
  OWASP Cloud Security - Enabling conversations through threat and control stories
  ☆179Updated 6 years ago
• rams3sh / Aaia
  AWS Identity and Access Management Visualizer and Anomaly Finder
  ☆295Updated last year
• Netflix-Skunkworks / aardvark
  Aardvark is a multi-account AWS IAM Access Advisor API
  ☆478Updated 7 months ago
• Netflix-Skunkworks / policyuniverse
  Parse and Process AWS IAM Policies, Statements, ARNs, and wildcards.
  ☆443Updated last year