Generates runbooks for GuardDuty findings
☆38Jun 24, 2024Updated last year
Alternatives and similar repositories for aws-guardduty-runbook-generator
Users that are interested in aws-guardduty-runbook-generator are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A tool for AWS incident response, that allows for enumeration, acquisition and analysis of data from AWS environments for the purpose of …☆200Jan 6, 2026Updated 5 months ago
- SCP management tool☆135Oct 23, 2023Updated 2 years ago
- Convert cloudtrail data to MITRE ATT&CK Sightings☆82Jul 25, 2022Updated 3 years ago
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…☆17Jun 11, 2024Updated 2 years ago
- A Golang program to rotate AWS & GCP account keys☆67May 5, 2026Updated last month
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Export / Import your AWS Organizational Structure and Policies - Attach & Validate your SCPs☆26Oct 11, 2023Updated 2 years ago
- AWS CloudFormation template to set up AWS Config to record only what’s needed for Security Hub.☆13Jul 12, 2023Updated 2 years ago
- Crowdsourced list of sensitive IAM Actions☆158Oct 29, 2024Updated last year
- This repository provides sample templates for security playbooks against various scenarios when using Amazon Web Services.☆661Updated this week
- A catalog of services that can be publicly exposed within different cloud providers.☆14Aug 30, 2024Updated last year
- A simple threat modeling tool to help humans to reduce time-to-value when threat modeling☆750Updated this week
- ☆21Feb 22, 2023Updated 3 years ago
- Safer AWS SCP deployments via real-time monitoring☆55Sep 30, 2023Updated 2 years ago
- ☆13Nov 5, 2024Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Slack alert bot for matching Github Audit Events☆10Nov 12, 2024Updated last year
- Uses the AWS Cloud Control API to list resources that are present in a given AWS account and region(s). Discovered resources are written …☆184Dec 21, 2025Updated 5 months ago
- Enhance the security of your web applications effortlessly with AWS Firewall Factory. Safeguard your valuable assets through seamless WAF…☆256Nov 17, 2025Updated 7 months ago
- IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.☆106Nov 24, 2023Updated 2 years ago
- This is a collection of threat detection rules / rules engines that I have come across.☆300May 5, 2024Updated 2 years ago
- ☆22Apr 17, 2023Updated 3 years ago
- A GitHub Actions Supply Chain CTF / Goat☆27Apr 13, 2026Updated 2 months ago
- This Terraform module consists of the configuration for automating the remediation of AWS EC2 vulnerabilities using AWS Inspector finding…☆50Jul 4, 2025Updated 11 months ago
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…☆174Mar 11, 2026Updated 3 months ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Collection of example Service Control Policies (SCPs) that are useful for sandbox and training AWS accounts.☆161Dec 22, 2025Updated 5 months ago
- Identify all permitted data paths originating from the Internet to Network Interfaces within AWS Accounts across the entire AWS Organizat…☆42Sep 19, 2023Updated 2 years ago
- Cloud Commotion intends to cause chaos to simulate security incidents☆149Jun 18, 2024Updated 2 years ago
- Get notified when actions are taken in the AWS Console.☆335Updated this week
- Tool to spray AWS Console IAM Logins☆36Jun 15, 2022Updated 4 years ago
- A collection of documented and undocumented AWS API models☆55Nov 21, 2025Updated 6 months ago
- ☆14Sep 26, 2023Updated 2 years ago
- AWS SSO Reporter☆55May 7, 2025Updated last year
- A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.☆84Jan 6, 2026Updated 5 months ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- This repo contains IOC, malware and malware analysis associated with Public cloud☆250Nov 11, 2024Updated last year
- A PoC to Simulate Ransomware Attack on AWS Environment☆33Oct 14, 2024Updated last year
- Tool for obfuscating and deobfuscating data.☆79Mar 20, 2024Updated 2 years ago
- Harness the security superpowers of your cloud asset inventory☆11Sep 22, 2024Updated last year
- ☆42Nov 20, 2023Updated 2 years ago
- VSCode integration with https://taskfile.dev☆25Jan 7, 2023Updated 3 years ago
- Clean accounts over permissions in GCP infra at scale☆72May 9, 2023Updated 3 years ago