awslabs / automated-security-helperView external linksLinks
ASH is an extensible, open source SAST, SCA, and IaC security scanner orchestration engine.
☆559Updated this week
Alternatives and similar repositories for automated-security-helper
Users that are interested in automated-security-helper are comparing it to the libraries listed below
Sorting:
- An AWS tool to help you create a point in time assessment of your AWS account using Prowler.☆590Nov 12, 2025Updated 3 months ago
- This solutions facilitates rapid deployment of Prowler, full AWS Organization analysis, and finding processing as part of a security post…☆61Jun 2, 2025Updated 8 months ago
- A simple threat modeling tool to help humans to reduce time-to-value when threat modeling☆668Feb 7, 2026Updated last week
- Safer AWS SCP deployments via real-time monitoring☆56Sep 30, 2023Updated 2 years ago
- Example solutions demonstrating how to implement patterns within the AWS Security Reference Architecture guide using CloudFormation (incl…☆1,115Dec 12, 2025Updated 2 months ago
- Automated Security Response on AWS is an add-on solution that works with AWS Security Hub to provide a ready-to-deploy architecture and a…☆463Updated this week
- ☆14Apr 14, 2023Updated 2 years ago
- Example policies demonstrating how to implement a data perimeter on AWS.☆190Jan 29, 2026Updated 2 weeks ago
- Assisted Log Enabler for AWS - Find AWS resources that are not logging, and turn them on.☆270Updated this week
- This repository provides sample templates for security playbooks against various scenarios when using Amazon Web Services.☆647Feb 8, 2026Updated last week
- Bare minimum AWS Security Alerting and Secure by default Configuration☆511May 15, 2025Updated 9 months ago
- Example AWS Service control policies to get started or mature your usage of AWS SCPs.☆283Jan 14, 2026Updated last month
- AWS CloudSaga - Simulate security events in AWS☆472Updated this week
- Reference architecture for deployment pipelines☆303Updated this week
- ☆401Sep 25, 2023Updated 2 years ago
- Unauthenticated enumeration of AWS IAM Roles.☆26Sep 7, 2025Updated 5 months ago
- SCP management tool☆135Oct 23, 2023Updated 2 years ago
- This repository can be used to generate and evaluate findings detected by Amazon GuardDuty☆419Jan 7, 2026Updated last month
- ☆1,049Aug 22, 2025Updated 5 months ago
- This project provides a solution to AWS customers for reporting on what tags exists, the resources they are applied to, and what resource…☆25Feb 28, 2024Updated last year
- Create a break glass role for emergency use in order to limit AWS production account access. Configure automatic alerts and logging of ac…☆180Nov 13, 2023Updated 2 years ago
- ☆18Jul 30, 2024Updated last year
- ☆116Updated this week
- Collection of example Service Control Policies (SCPs) that are useful for sandbox and training AWS accounts.☆161Dec 22, 2025Updated last month
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆113Nov 13, 2024Updated last year
- IAMbic is Version-Control for IAM. It centralizes and simplifies cloud access and permissions. It maintains an eventually consistent, hum…☆297Nov 27, 2024Updated last year
- ☆15Jul 2, 2024Updated last year
- Minimum DevSecOps with Monitoring Options on Amazon EKS☆13Jan 9, 2026Updated last month
- Deploy a multi-account cloud foundation to support highly-regulated workloads and complex compliance requirements.☆762Updated this week
- ☆21Updated this week
- List of known AWS accounts☆252Feb 6, 2026Updated last week
- Generate a score for your sbom to understand if it will actually be useful.☆237Aug 13, 2024Updated last year
- AWS SSO Reporter☆55May 7, 2025Updated 9 months ago
- A Solution for AWS Resource Tagging Automation☆53Nov 15, 2025Updated 3 months ago
- Check CDK applications for best practices using a combination of available rule packs☆979Feb 9, 2026Updated last week
- Automating situational awareness for cloud penetration tests.☆2,289Feb 5, 2026Updated last week
- ☆10Aug 11, 2025Updated 6 months ago
- Guard offers a policy-as-code domain-specific language (DSL) to write rules and validate JSON- and YAML-formatted data such as CloudForma…☆1,366Updated this week
- Runs checks to see if an EKS cluster follows EKS Best Practices.☆936Jan 16, 2026Updated 3 weeks ago