A MITRE ATT&CK Navigator export for AWS GuardDuty Findings
☆138Jul 23, 2021Updated 4 years ago
Alternatives and similar repositories for attack-guardduty-navigator
Users that are interested in attack-guardduty-navigator are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆377Feb 23, 2024Updated 2 years ago
- AWSATT&CK adds MITRE ATT&CK context and additional logging capabilities to Rhino Security Labs's open-source AWS exploitation framework, …☆46Mar 5, 2021Updated 5 years ago
- Resource types that can be publicly exposed on AWS☆335Feb 23, 2022Updated 4 years ago
- Varna: Quick & Cheap AWS CloudTrail Monitoring with Event Query Language (EQL)☆52Dec 26, 2022Updated 3 years ago
- AWS docs, guides, and other tools☆75Feb 4, 2023Updated 3 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- SkyWrapper helps to discover suspicious creation forms and uses of temporary tokens in AWS☆107Mar 25, 2021Updated 5 years ago
- ☆159Jul 8, 2023Updated 2 years ago
- Detect Tactics, Techniques & Combat Threats☆2,298Jun 2, 2026Updated 2 weeks ago
- A python module for orchestrating content acquisitions and analysis via amazon ssm.☆58Nov 2, 2023Updated 2 years ago
- Built-in Panther detection rules and policies☆452Updated this week
- 🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…☆387Apr 3, 2024Updated 2 years ago
- PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…☆60Jan 9, 2022Updated 4 years ago
- ☆26Jun 22, 2022Updated 3 years ago
- A Terraform module for GRR: the distributed incident forensics and response framework☆51May 6, 2020Updated 6 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- This implementation demonstrates the AWS Identity and Access Management (IAM) Access Analyzer policy validation capability. Learn how to …☆24Jun 16, 2022Updated 4 years ago
- Ekoparty's BlueSpace Keynote November 2021. Shoutout to @plugxor Muchas Gracias!!!☆13Jun 5, 2023Updated 3 years ago
- Opsec considerations for each AWS GuardDuty finding type.☆24Oct 29, 2020Updated 5 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆77Mar 4, 2022Updated 4 years ago
- A checklist of practices for organizations dealing with account takeover (ATO)☆273Oct 4, 2024Updated last year
- This is a collection of AWS CloudFormation templates which create Lambda functions triggered by CloudWatch Events rule to evaluate AWS AP…☆54Jan 14, 2026Updated 5 months ago
- A honey token manager and alert system for AWS.☆321Dec 19, 2021Updated 4 years ago
- AWS Identity and Access Management Visualizer and Anomaly Finder☆297Jan 23, 2026Updated 4 months ago
- ☆1,061Apr 12, 2026Updated 2 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Salesforce Policy Deviation Checker☆30Sep 30, 2020Updated 5 years ago
- Swift code to parse the quarantine history database, Chrome history database, Safari history database, and Firefox history database on ma…☆16Dec 3, 2020Updated 5 years ago
- Automated Attack Simulation in the Cloud, complete with detection use cases.☆616Nov 28, 2024Updated last year
- ☆12Aug 7, 2018Updated 7 years ago
- This repository contains Python code to import the findings from AWS Config into AWS Security Hub.☆20Mar 25, 2022Updated 4 years ago
- Automated activity logging utility for Mythic C2 v3.0+ with Ghostwriter v3.0+☆24Jul 31, 2025Updated 10 months ago
- Suite of tools to facilitate attacks against the Jamf macOS management platform.☆190Feb 10, 2021Updated 5 years ago
- IAMTrail☆510Updated this week
- A tool for quickly evaluating IAM permissions in AWS.☆1,561Aug 2, 2024Updated last year
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.☆556Jul 13, 2025Updated 11 months ago
- Cloudformation Template and Lambda to detect if Instance Profile credentials are being used outside your AWS Account.☆29Aug 18, 2019Updated 6 years ago
- an excel-centric approach for the MITRE ATT&CK® Tactics and Techniques☆188May 5, 2022Updated 4 years ago
- Open Cloud Security Posture Management Engine☆347Feb 19, 2022Updated 4 years ago
- Playing around with Stratus Red Team (Cloud Attack simulation tool) and SumoLogic☆310Jan 6, 2023Updated 3 years ago
- Python installable command line utiltity for mitigation of host and key compromises.☆344Jul 23, 2021Updated 4 years ago
- Intelligence around common attacker behaviors (MITRE ATT&CK TTPs), in the form of ATT&CK Navigator "layer" json files.☆36Aug 12, 2022Updated 3 years ago