aws-samples / aws-iam-accessadvisor-permissionboundary
Audit IAM roles and users using Access Advisor data using Python/boto3 SDK and automatically create IAM permissions boundaries to limit access
☆37Updated 4 years ago
Related projects: ⓘ
- Demonstrates sending AWS findings to your Slack Channel☆56Updated 10 months ago
- This script automates the process of running the GuardDuty multi-account workflow across a group of accounts that are in your control☆129Updated this week
- ☆57Updated 9 months ago
- A curated list of things relating to CapitalOne's Cloud-custodian project☆87Updated 4 years ago
- AWS Landing Zone Template☆39Updated 3 years ago
- Cloud Custodian Policies for Automated Amazon Resource Management☆58Updated 5 years ago
- A CloudFormation custom resource provider for adding an IAM SAML provider.☆22Updated 10 months ago
- Metrics and alarms for AWS security hub for the CIS standard☆93Updated last year
- Collection of semi-useful Service Control Policies and scripts to manage them☆81Updated 2 months ago
- An AWS config rule that uses IAM Access Advisor to find over-permissioned IAM users, groups, and roles.☆16Updated 4 years ago
- Pre-configured response & remediation playbooks for AWS Security Hub☆66Updated 2 years ago
- Automate the AWS GuardDuty account invitation lifecycle for all of your organizations AWS accounts in all regions as well as aggregate an…☆65Updated last year
- Manheim's Cloud Custodian (c7n) wrapper package, policy generator, runner, and supporting tools.☆45Updated 3 months ago
- Cloud Custodian Policy Files and code☆67Updated last year
- Some of my personal rules for CapitalOne's Cloud Custodian project☆43Updated 3 years ago
- Python library to enable you to run custom AWS Config Rules at scale, using Lambda Layer.☆94Updated 2 months ago
- bash functions to help run aws-cli commands across roles in multiple accounts with MFA☆68Updated 4 years ago
- This is a collection of AWS CloudFormation templates which create Lambda functions triggered by CloudWatch Events rule to evaluate AWS AP…☆51Updated 5 years ago
- This repository contains Python code to import the findings from AWS Config into AWS Security Hub.☆20Updated 2 years ago
- Example code for setting up CIS Benchmarks using EventBridge☆19Updated 2 years ago
- Artifacts for use with AWS Systems Manager☆108Updated 9 months ago
- ☆40Updated 9 months ago
- A trivially simple stack to create an AWS IAM SAML provider via CloudFormation☆40Updated 4 years ago
- AWS IAM Permissions Guardrails https://aws-samples.github.io/aws-iam-permissions-guardrails/☆121Updated last year
- Lab materials and documentation for the workshop ARC325 Managing Multiple Accounts at Scale at re:Invent 2017☆78Updated 4 years ago
- ☆24Updated 6 months ago
- AWS Security Odyssey: A hands-on journey with security services and controls in the AWS cloud.☆44Updated 5 years ago
- Undocumented AWS Management Console APIs SDK for Python☆51Updated last year
- Shell script that automates the copy of encrypted AMI across accounts and regions.☆56Updated 9 months ago
- Collection of samples for Management and Governance services☆60Updated 3 weeks ago