Alternatives and similar repositories for policy-as-code

Users that are interested in policy-as-code are comparing it to the libraries listed below

• aws-samples / aws-control-tower-reference-architectures
  Sample CloudFormation templates and architecture for AWS Control Tower
  ☆29Updated 2 years ago
• z0ph / aa-policy-validator
  Validate all your Customer IAM Policies against AWS Access Analyzer - Policy Validation
  ☆43Updated 4 years ago
• awsdocs / aws-control-tower-guide
  The open source version of the AWS Control Tower docs. You can submit feedback & requests for changes by submitting issues in this repo o…
  ☆27Updated 2 years ago
• adhorn / ssh-restricted
  SSH-Restricted deploys an SSH compliance rule (AWS Config) with auto-remediation via AWS Lambda if SSH access is public.
  ☆30Updated 4 years ago
• ljacobsson / iam-policies-cli
  A CLI tool for building simple to complex IAM policies
  ☆70Updated last year
• GenAIGator / AWS-SecurityHub-CIS-Compliance-Automation
  ☆39Updated 4 years ago
• aws-samples / visualize-iam-access-analyzer-policy-validation-findings
  ☆21Updated 2 years ago
• trussworks / terraform-aws-ou-scp
  Combines AWS Organizations Service Control Policies (SCP)
  ☆55Updated 2 weeks ago
• phzietsman / aws-slack-clickoops-watcher
  Get alerts when people are using the AWS console to modify create or modify resources.
  ☆89Updated 3 years ago
• cloudposse / terraform-aws-service-control-policies
  Terraform module to provision Service Control Policies (SCP) for AWS Organizations, Organizational Units, and AWS accounts
  ☆55Updated 3 months ago
• aws-samples / amazon-ecr-continuous-scan
  Example container image re-scan with Amazon ECR
  ☆49Updated 4 years ago
• alestic / aws-cli-multi-account-sessions
  bash functions to help run aws-cli commands across roles in multiple accounts with MFA
  ☆69Updated 5 years ago
• aws-samples / aws-iamctl
  ☆63Updated 10 months ago
• willdady / aws-resource-based-policy-collector
  Utility for collecting resource-based policies from AWS
  ☆23Updated 3 years ago
• aws-samples / aws-vpc-cidr-mgmt
  ☆31Updated 4 years ago
• masterpointio / terraform-aws-nuke-bomber
  A Terraform module to create a bomber which nukes your cloud environment on a schedule
  ☆52Updated 4 years ago
• kmcquade / terraform-aws-policy-sentry
  Terraform module for Policy Sentry.
  ☆25Updated 4 years ago
• jchrisfarris / aws_scripts
  Useful scripts for maintaining multiple AWS Accounts
  ☆45Updated 5 months ago
• aws-samples / automated-role-entitlements-in-aws-iam-identity-center
  This solution will help you automate user group assignment to permission sets in AWS IAM Identity center for accessing any or all AWS acc…
  ☆25Updated 6 months ago
• benkehoe / permissions-boundary-test
  Demonstration that AWS IAM policy evaluation docs are incorrect
  ☆15Updated 3 years ago
• globaldatanet / cost-reporter
  AWS Cost Reporter for Slack
  ☆30Updated 4 years ago
• manheim / manheim-c7n-tools
  Manheim's Cloud Custodian (c7n) wrapper package, policy generator, runner, and supporting tools.
  ☆47Updated 7 months ago
• SummitRoute / aws_managed_policies
  AWS managed IAM policies
  ☆128Updated 3 years ago
• zsolt-halo / aws-config-advanced-query
  A collection of useful queries that can be used to verify compliance/security across your AWS assets
  ☆29Updated 6 years ago
• aws-samples / aws-infra-policy-as-code-with-terraform
  Implements OPA-based preventive security controls for AWS Infrastructure using Terraform Infrastructure as Code (IaC), that can establish…
  ☆42Updated last year
• iann0036 / iamlive-lambda-extension
  Lambda Extension for iamlive
  ☆42Updated 4 years ago
• aws-samples / infrastructure-assessment-iac-automation
  ☆12Updated last year
• aws-samples / aws-security-hub-workshop
  A Workshop for AWS Security Hub Integration, Prioritization, and Response
  ☆72Updated last year
• aws-samples / single-stage-aws-iam-identity-center-pipeline
  A solution designed to simplify AWS Identity Center (SSO) management using simple JSON/YAML inputs.
  ☆14Updated last month
• JimmyDqv / AWS-Account-Vending-Machine
  An serverless account vending machine for AWS accounts
  ☆25Updated 5 years ago