awslabs / aws-break-glass-role
Create a break glass role for emergency use in order to limit AWS production account access. Configure automatic alerts and logging of activities in the role to secure its use in production environments.
☆177Updated last year
Alternatives and similar repositories for aws-break-glass-role:
Users that are interested in aws-break-glass-role are comparing it to the libraries listed below
- Repository for iamfast questions and issues☆171Updated last month
- Access Undenied parses AWS AccessDenied CloudTrail events, explains the reasons for them, and offers actionable remediation steps. Open-s…☆261Updated 2 years ago
- ☆86Updated last year
- Collection of example Service Control Policies (SCPs) that are useful for sandbox and training AWS accounts.☆147Updated 2 months ago
- Assume AWS IAM roles from GitHub Actions workflows with no stored secrets☆171Updated 3 years ago
- Terraform module for serverless certificate authority on AWS☆119Updated last week
- Allow users to request temporary elevated access to your AWS environment☆122Updated last year
- Get notified when actions are taken in the AWS Console.☆306Updated last month
- CloudFormation template to create reasonable account defaults around Cost Surprise Alerting☆170Updated 2 months ago
- rdsconn makes connecting to an AWS RDS instance inside a VPC from your laptop easier☆108Updated last year
- A command-line tool which can move CloudFormation resources between stacks☆98Updated this week
- Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frame…☆225Updated last year
- Example policies demonstrating how to implement a data perimeter on AWS.☆148Updated this week
- SCP management tool☆131Updated last year
- Runs IAM policy linting and security checks against either a single AWS account or a set of member accounts of an AWS Organization.☆137Updated this week
- Crowdsourced list of sensitive IAM Actions☆141Updated 4 months ago
- A project to collate IAM actions, AWS APIs and managed policies from various public sources.☆291Updated this week
- Kickstart and manage your AWS Organization via Terraform☆83Updated last week
- IAM policy actions autocomplete, documentation & wildcard resolution for VS Code☆152Updated 2 weeks ago
- AWS VPC Subnets Watcher☆76Updated last year
- Bare minimum AWS Security Alerting and Configuration☆475Updated 2 weeks ago
- AWS Organizations Service Control Policies (SCPs) written in HashiCorp Terraform.☆237Updated 4 months ago
- ☆175Updated 8 months ago
- A crowdsourced AWS IAM permissions reference.☆91Updated 2 weeks ago
- A cloud security tool to search and clean up unused AWS access keys, written in Go.☆50Updated 2 years ago
- ☆127Updated 2 months ago
- Open-source temporary elevated access solution for AWS IAM Identity Center.☆341Updated last month
- Rules Registry for Compliance Frameworks☆116Updated 11 months ago
- A command line tool that validates AWS IAM Policies in a Terraform template against AWS IAM best practices☆320Updated last week
- A simple decorator to run Python functions across multiple AWS accounts, OUs and/or regions, with or without an AWS Organization.☆97Updated last year