aquia-inc / aws-guardduty-runbook-generator

Related projects ⓘ

Alternatives and complementary repositories for aws-guardduty-runbook-generator

• zmallen / cloudtrail2sightings
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆79Updated 2 years ago
• matthewdfuller / safer-scps
  Safer AWS SCP deployments via real-time monitoring
  ☆46Updated last year
• tradichel / SecurityMetricsAutomation
  ☆37Updated 10 months ago
• orcasecurity / orca-toolbox
  ☆109Updated last week
• onemorepereira / aws-sso-reporter
  AWS SSO Reporter
  ☆54Updated last year
• primeharbor / breaches.cloud
  https://breaches.cloud
  ☆36Updated last month
• Cybr-Inc / CloudSec
  Public repository of all things cloud security.
  ☆33Updated 2 months ago
• invictus-ir / aws-cheatsheet
  A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.
  ☆62Updated 6 months ago
• Permiso-io-tools / cloudtail
  ☆24Updated 2 weeks ago
• primeharbor / aws-fast-fixes
  Scripts to quickly fix security and compliance issues
  ☆25Updated last year
• DataDog / workload-security-evaluator
  Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.
  ☆30Updated last month
• Aqua-Nautilus / TrailShark
  ☆42Updated 3 weeks ago
• adanalvarez / TrailDiscover
  An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…
  ☆115Updated last month
• houey / awesome-service-control-policies
  Listing of resources for example AWS Service Control Policies (SCPs)
  ☆15Updated 10 months ago
• StevenSmiley / aws-mine
  AWS honey token manager
  ☆84Updated 3 months ago
• aws-samples / network-access-analyzer-multi-account-analysis
  Identify all permitted data paths originating from the Internet to Network Interfaces within AWS Accounts across the entire AWS Organizat…
  ☆36Updated last year
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆76Updated 6 months ago
• vectra-ai-research / derf
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆85Updated 10 months ago
• CloudSecurityPartners / hack-aws-in-60-minutes
  ☆11Updated 9 months ago
• RhinoSecurityLabs / IAMActionHunter
  An AWS IAM policy statement parser and query tool.
  ☆157Updated 9 months ago
• primeharbor / sensitive_iam_actions
  Crowdsourced list of sensitive IAM Actions
  ☆139Updated 3 weeks ago
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆57Updated last year
• WithSecureLabs / IAMGraph
  ☆38Updated 4 months ago
• lightspin-tech / eks-creation-engine
  The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…
  ☆40Updated last year
• SecurityRunners / awsdocs
  Repository to archive AWS Documentation for local use
  ☆38Updated last month
• aquia-inc / scpkit
  SCP management tool
  ☆126Updated last year
• Coalfire-CF / Coalfire-AWS-RAMPpak
  Coalfire AWS RAMP/pak Reference Architecture
  ☆36Updated 2 months ago
• WithSecureLabs / cloud-security-vm
  Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments
  ☆110Updated 2 months ago
• Nextdoor / cspm_evaluation_matrix
  Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix
  ☆59Updated last year
• aws-samples / multi-account-security-assessment-via-prowler
  This solutions facilitates rapid deployment of Prowler, full AWS Organization analysis, and finding processing as part of a security post…
  ☆54Updated 3 months ago