Alternatives and similar repositories for policy-as-code

Users that are interested in policy-as-code are comparing it to the libraries listed below

• aws-samples / aws-control-tower-reference-architectures
  Sample CloudFormation templates and architecture for AWS Control Tower
  ☆29Updated 2 years ago
• z0ph / aa-policy-validator
  Validate all your Customer IAM Policies against AWS Access Analyzer - Policy Validation
  ☆43Updated 4 years ago
• adhorn / ssh-restricted
  SSH-Restricted deploys an SSH compliance rule (AWS Config) with auto-remediation via AWS Lambda if SSH access is public.
  ☆30Updated 4 years ago
• NickTheSecurityDude / AWS-SecurityHub-CIS-Compliance-Automation
  ☆39Updated 3 years ago
• aws-samples / aws-iamctl
  ☆63Updated 10 months ago
• cloudposse / terraform-aws-service-control-policies
  Terraform module to provision Service Control Policies (SCP) for AWS Organizations, Organizational Units, and AWS accounts
  ☆53Updated 2 months ago
• aws-samples / visualize-iam-access-analyzer-policy-validation-findings
  ☆20Updated 2 years ago
• aws-samples / automated-role-entitlements-in-aws-iam-identity-center
  This solution will help you automate user group assignment to permission sets in AWS IAM Identity center for accessing any or all AWS acc…
  ☆25Updated 5 months ago
• kmcquade / terraform-aws-policy-sentry
  Terraform module for Policy Sentry.
  ☆25Updated 4 years ago
• aws-samples / infrastructure-assessment-iac-automation
  ☆12Updated last year
• awsdocs / aws-control-tower-guide
  The open source version of the AWS Control Tower docs. You can submit feedback & requests for changes by submitting issues in this repo o…
  ☆27Updated 2 years ago
• phzietsman / aws-slack-clickoops-watcher
  Get alerts when people are using the AWS console to modify create or modify resources.
  ☆89Updated 3 years ago
• trussworks / terraform-aws-ou-scp
  Combines AWS Organizations Service Control Policies (SCP)
  ☆55Updated last month
• schubergphilis / terraform-aws-mcaf-securityhub-findings-manager
  Terraform module to Automatically suppress findings recorded by the AWS Security Hub service based on a pre-defined and configurable supp…
  ☆19Updated 3 weeks ago
• zsolt-halo / aws-config-advanced-query
  A collection of useful queries that can be used to verify compliance/security across your AWS assets
  ☆29Updated 6 years ago
• alestic / aws-cli-multi-account-sessions
  bash functions to help run aws-cli commands across roles in multiple accounts with MFA
  ☆68Updated 5 years ago
• aws-samples / aws-infra-policy-as-code-with-terraform
  Implements OPA-based preventive security controls for AWS Infrastructure using Terraform Infrastructure as Code (IaC), that can establish…
  ☆41Updated last year
• aws-samples / aws-security-hub-workshop
  A Workshop for AWS Security Hub Integration, Prioritization, and Response
  ☆72Updated last year
• aws-samples / amazon-ecr-continuous-scan
  Example container image re-scan with Amazon ECR
  ☆49Updated 4 years ago
• masterpointio / terraform-aws-nuke-bomber
  A Terraform module to create a bomber which nukes your cloud environment on a schedule
  ☆52Updated 4 years ago
• ljacobsson / iam-policies-cli
  A CLI tool for building simple to complex IAM policies
  ☆70Updated last year
• aws-samples / aws-iam-accessadvisor-permissionboundary
  Audit IAM roles and users using Access Advisor data using Python/boto3 SDK and automatically create IAM permissions boundaries to limit a…
  ☆38Updated 4 years ago
• iann0036 / iamlive-lambda-extension
  Lambda Extension for iamlive
  ☆42Updated 4 years ago
• awslabs / anfw-automate
  Automate rule management for AWS Network Firewall
  ☆16Updated last month
• trussworks / terraform-aws-cloudtrail
  Creates and configures AWS CloudTrail
  ☆48Updated 7 months ago
• manheim / manheim-c7n-tools
  Manheim's Cloud Custodian (c7n) wrapper package, policy generator, runner, and supporting tools.
  ☆45Updated 6 months ago
• aws-samples / aws-vpc-cidr-mgmt
  ☆31Updated 4 years ago
• aws-samples / single-stage-aws-iam-identity-center-pipeline
  A solution designed to simplify AWS Identity Center (SSO) management using simple JSON/YAML inputs.
  ☆14Updated last month
• iann0036 / vscode-aws-cloudshell
  (Unofficial) AWS CloudShell plugin for VS Code
  ☆56Updated 3 months ago
• aws-samples / sso-sync-to-amazon-rds
  ☆37Updated last year