aws-samples / aws-iam-accessadvisor-permissionboundary
Audit IAM roles and users using Access Advisor data using Python/boto3 SDK and automatically create IAM permissions boundaries to limit access
☆37Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for aws-iam-accessadvisor-permissionboundary
- ☆57Updated 11 months ago
- Collection of semi-useful Service Control Policies and scripts to manage them☆83Updated 4 months ago
- Demonstrates sending AWS findings to your Slack Channel☆56Updated last year
- Cloud Custodian Policies for Automated Amazon Resource Management☆59Updated 5 years ago
- This script automates the process of running the GuardDuty multi-account workflow across a group of accounts that are in your control☆130Updated 2 months ago
- AWS IAM Permissions Guardrails https://aws-samples.github.io/aws-iam-permissions-guardrails/☆122Updated last year
- Collection of samples for Management and Governance services☆62Updated 2 months ago
- Python library to enable you to run custom AWS Config Rules at scale, using Lambda Layer.☆94Updated 4 months ago
- AWS GD2ACL☆56Updated 3 months ago
- AWS Landing Zone Template☆39Updated 3 years ago
- ☆41Updated 11 months ago
- Artifacts for use with AWS Systems Manager☆108Updated 11 months ago
- Pre-configured response & remediation playbooks for AWS Security Hub☆65Updated 3 years ago
- A curated list of things relating to CapitalOne's Cloud-custodian project☆88Updated 4 years ago
- AWS managed IAM policies☆127Updated 2 years ago
- This repository contains Python code to import the findings from AWS Config into AWS Security Hub.☆20Updated 2 years ago
- bash functions to help run aws-cli commands across roles in multiple accounts with MFA☆68Updated 4 years ago
- Metrics and alarms for AWS security hub for the CIS standard☆93Updated last year
- Solution and deployment for recurring Security Hub Summary email to provide recipients with a proactive communication summarizing the sec…☆39Updated 9 months ago
- Retrospectively tag AWS resources so you can work out who created them☆110Updated 11 months ago
- A CloudFormation custom resource provider for adding an IAM SAML provider.☆22Updated last week
- Serverless app designed for any customer with two or more accounts to view resources across accounts/regions in simple single pane of gla…☆111Updated last year
- Manheim's Cloud Custodian (c7n) wrapper package, policy generator, runner, and supporting tools.☆45Updated 5 months ago
- Lab materials and documentation for the workshop ARC325 Managing Multiple Accounts at Scale at re:Invent 2017☆78Updated 4 years ago
- Cloud Custodian example policies that remediate security issues, enforce tagging, and control costs☆62Updated 2 years ago
- Automate the daily partitioning of your CloudTrail bucket in Athena☆28Updated last year
- Workshop exercise materials for re:Invent 2017 - SID 341: Using AWS CloudTrail Logs for Scalable, Automated Anomaly Detection☆51Updated 5 years ago
- This code enables end-users to create AWS accounts and setup a custom base configuration quickly in an automated way.☆46Updated 4 years ago
- Tools to help automate your AWS Accounts☆98Updated 2 months ago
- This CloudWatch Events rule Lambda function evaluates AWS API calls that change Amazon EC2 security group ingress rules. The function fla…☆25Updated 4 years ago