awslabs / aws-break-glass-role
Create a break glass role for emergency use in order to limit AWS production account access. Configure automatic alerts and logging of activities in the role to secure its use in production environments.
☆177Updated last year
Alternatives and similar repositories for aws-break-glass-role:
Users that are interested in aws-break-glass-role are comparing it to the libraries listed below
- Repository for iamfast questions and issues☆175Updated 3 weeks ago
- Access Undenied parses AWS AccessDenied CloudTrail events, explains the reasons for them, and offers actionable remediation steps. Open-s…☆262Updated 2 years ago
- Collection of example Service Control Policies (SCPs) that are useful for sandbox and training AWS accounts.☆148Updated 4 months ago
- Kickstart and manage your AWS Organization via Terraform☆92Updated 3 weeks ago
- Get notified when actions are taken in the AWS Console.☆315Updated 3 months ago
- CloudFormation template to create reasonable account defaults around Cost Surprise Alerting☆170Updated 4 months ago
- Crowdsourced list of sensitive IAM Actions☆144Updated 5 months ago
- A command-line tool which can move CloudFormation resources between stacks☆99Updated this week
- Allow users to request temporary elevated access to your AWS environment☆123Updated last year
- rdsconn makes connecting to an AWS RDS instance inside a VPC from your laptop easier☆108Updated last year
- Runs IAM policy linting and security checks against either a single AWS account or a set of member accounts of an AWS Organization.☆142Updated last month
- SCP management tool☆131Updated last year
- Assume AWS IAM roles from GitHub Actions workflows with no stored secrets☆171Updated 3 years ago
- ☆87Updated last year
- Example policies demonstrating how to implement a data perimeter on AWS.☆154Updated 2 weeks ago
- Terraform module for serverless certificate authority on AWS☆136Updated last week
- A project to collate IAM actions, AWS APIs and managed policies from various public sources.☆293Updated this week
- AWS VPC Subnets Watcher☆76Updated last year
- Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frame…☆225Updated last year
- A command line tool that validates AWS IAM Policies in a Terraform template against AWS IAM best practices☆330Updated 2 months ago
- Enhance the security of your web applications effortlessly with AWS Firewall Factory. Safeguard your valuable assets through seamless WAF…☆246Updated this week
- IAM policy actions autocomplete, documentation & wildcard resolution for VS Code☆152Updated this week
- Collection of semi-useful Service Control Policies and scripts to manage them☆95Updated 2 months ago
- ☆146Updated last week
- Open-source temporary elevated access solution for AWS IAM Identity Center.☆363Updated last week
- Are you a Thrifty AWS dev? This mod checks your AWS accounts for unused and under-utilized resources using Powerpipe and Steampipe.☆102Updated 5 months ago
- A cloud security tool to search and clean up unused AWS access keys, written in Go.☆49Updated 2 years ago
- A simple decorator to run Python functions across multiple AWS accounts, OUs and/or regions, with or without an AWS Organization.☆97Updated last year
- Analyzes CloudTrail data of a given AWS account and generates a summary of recently active IAM principals, API calls they made, as well a…☆161Updated last week
- A crowdsourced AWS IAM permissions reference.☆92Updated 2 months ago