aquasecurity / cfsecLinks
Static analysis for CloudFormation templates to identify common misconfiguration
☆57Updated 3 years ago
Alternatives and similar repositories for cfsec
Users that are interested in cfsec are comparing it to the libraries listed below
Sorting:
- A tool to check the security settings of Github Organizations.☆71Updated last year
- a tool to audit the istio service mesh☆173Updated 3 years ago
- ☆54Updated 2 weeks ago
- An SBOM query language and associated utilities☆54Updated last year
- Clean accounts over permissions in GCP infra at scale☆71Updated 2 years ago
- vscode extension for tfsec☆30Updated 2 years ago
- Slack alert bot for matching Github Audit Events☆10Updated 6 months ago
- Simple tool that allows you to detect imposter commits in GitHub Actions workflows.☆23Updated 5 months ago
- Compares and analyzes GCP IAM roles.☆77Updated 2 months ago
- PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…☆59Updated 3 years ago
- ☆33Updated 2 years ago
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- Kubernetes audit logging, when you don't control the control plane☆79Updated 2 weeks ago
- GCP CSPM using Google Sheets☆36Updated last month
- Open-source proof-of-concept client for AWS IAM Roles Anywhere☆71Updated 2 years ago
- Darkbit Cloud Security Tools☆25Updated 4 years ago
- ☆74Updated 2 weeks ago
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.☆64Updated 5 years ago
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆61Updated 2 years ago
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated last month
- Common Golang Packages for use by the Various Cloud Nuke Tools☆40Updated 2 weeks ago
- A collection of Docker and Kubernetes resources☆18Updated 2 years ago
- ☆22Updated 2 years ago
- A Golang program to rotate AWS & GCP account keys☆65Updated 2 weeks ago
- Discover vulnerabilities and container image misconfiguration in production environments.☆56Updated this week
- Trivy's misconfiguration scanning engine☆218Updated 4 months ago
- Identify all permitted data paths originating from the Internet to Network Interfaces within AWS Accounts across the entire AWS Organizat…☆39Updated last year
- Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).☆143Updated 3 weeks ago
- Automated determination of which AWS services run where☆20Updated last week
- ☆112Updated last week