ThreatResponse / aws_ir

Related projects ⓘ

Alternatives and complementary repositories for aws_ir

• ThreatResponse / margaritashotgun
  Remote Memory Acquisition Tool
  ☆242Updated 4 years ago
• easttimor / aws-incident-response
  ☆363Updated 8 months ago
• stuhirst / awssecurity
  for AWS Security material
  ☆246Updated 2 years ago
• amrandazz / attack-guardduty-navigator
  A MITRE ATT&CK Navigator export for AWS GuardDuty Findings
  ☆136Updated 3 years ago
• awslabs / aws-security-automation
  Collection of scripts and resources for DevSecOps and Automated Incident Response Security
  ☆620Updated 3 years ago
• turnerlabs / antiope
  AWS Inventory and Compliance Framework
  ☆223Updated last year
• Netflix-Skunkworks / aws-credential-compromise-detection
  Example detection of compromise credentials in AWS
  ☆119Updated 6 years ago
• dowjones / hammer
  Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)
  ☆436Updated last year
• willbengtson / trailblazer-aws
  Blazing CloudTrail since 2018
  ☆134Updated 5 years ago
• Netflix-Skunkworks / diffy
  (DEPRECATED) Diffy is a triage tool used during cloud-centric security incidents, to help digital forensics and incident response (DFIR)…
  ☆635Updated 10 months ago
• MrSecure / review-security-groups
  A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.
  ☆62Updated 4 years ago
• mozilla / ssm-acquire
  A python module for orchestrating content acquisitions and analysis via amazon ssm.
  ☆58Updated last year
• OpenCSPM / opencspm
  Open Cloud Security Posture Management Engine
  ☆334Updated 2 years ago
• duo-labs / cloudtrail-partitioner
  ☆151Updated last year
• twilio-labs / socless
  The SOCless automation framework
  ☆134Updated 2 months ago
• panther-labs / panther-analysis
  Built-in Panther detection rules and policies
  ☆339Updated this week
• SummitRoute / aws_exposable_resources
  Resource types that can be publicly exposed on AWS
  ☆317Updated 2 years ago
• awslabs / aws-automated-incident-response-and-forensics
  ☆376Updated last year
• sonofagl1tch / AWSDetonationLab
  This script is used to generate some basic detections of the aws security services
  ☆71Updated 2 years ago
• Netflix-Skunkworks / aardvark
  Aardvark is a multi-account AWS IAM Access Advisor API
  ☆473Updated 3 weeks ago
• amazon-archives / aws-security-benchmark
  Open source demos, concept and guidance related to the AWS CIS Foundation framework.
  ☆617Updated 4 years ago
• Netflix-Skunkworks / cloudtrail-anomaly
  ☆82Updated 4 years ago
• nccgroup / G-Scout
  Google Cloud Platform Security Tool
  ☆232Updated 5 years ago
• awslabs / amazon-guardduty-tester
  This repository can be used to generate and evaluate findings detected by Amazon GuardDuty
  ☆345Updated 4 months ago
• cyberark / SkyWrapper
  SkyWrapper helps to discover suspicious creation forms and uses of temporary tokens in AWS
  ☆104Updated 3 years ago
• awslabs / aws-security-analytics-bootstrap
  AWS Security Analytics Bootstrap enables customers to perform security investigations on AWS service logs by providing an Amazon Athena a…
  ☆238Updated this week
• awslabs / aws-cloudsaga
  AWS CloudSaga - Simulate security events in AWS
  ☆442Updated this week
• andresriancho / nimbostratus
  Tools for fingerprinting and exploiting Amazon cloud infrastructures
  ☆447Updated 2 years ago
• Netflix-Skunkworks / policyuniverse
  Parse and Process AWS IAM Policies, Statements, ARNs, and wildcards.
  ☆428Updated 4 months ago
• Netflix-Skunkworks / historical
  A serverless, event-driven AWS configuration collection service with configuration versioning.
  ☆93Updated 3 years ago