awslabs / security-hub-compliance-analyzer
A compliance analysis tool which enables organizations to more quickly articulate their compliance posture and also generate supporting evidence artifacts
☆40Updated last month
Alternatives and similar repositories for security-hub-compliance-analyzer:
Users that are interested in security-hub-compliance-analyzer are comparing it to the libraries listed below
- Automated Forensics Orchestrator for Amazon EC2 is a self-service AWS Solution implementation that enterprise customers can deploy to qui…☆62Updated 2 weeks ago
- Identify all permitted data paths originating from the Internet to Network Interfaces within AWS Accounts across the entire AWS Organizat…☆39Updated last year
- ☆32Updated 2 months ago
- Coalfire AWS RAMP/pak Reference Architecture☆36Updated 8 months ago
- ☆117Updated last month
- SCP management tool☆131Updated last year
- ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach☆153Updated last year
- The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…☆40Updated 2 years ago
- AWS SSO Reporter☆54Updated last year
- Open source tool for processing OSCAL based FedRAMP SSPs☆38Updated 6 months ago
- Create custom auto-remediation solutions using serverless functions in the cloud.☆53Updated last year
- Crowdsourced list of sensitive IAM Actions☆144Updated 6 months ago
- Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI☆43Updated 5 years ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated last year
- ☆41Updated last year
- Various deployments of the OSCAL editor☆46Updated 9 months ago
- This example shows how you can create a Lambda function to retrieve inventory information to create the integrated inventory spreadsheet …☆25Updated 7 months ago
- This solutions facilitates rapid deployment of Prowler, full AWS Organization analysis, and finding processing as part of a security post…☆56Updated 5 months ago
- ☆21Updated 2 years ago
- A repository of resources discussing the Public Sectors push for Zero Trust along with associated resources for learning on the topic.☆39Updated 3 years ago
- ☆32Updated 9 months ago
- Generates runbooks for GuardDuty findings☆35Updated 10 months ago
- A docker container to simplify and secure the use of Infrastructure as Code (IaC)☆72Updated this week
- List of vendors that do not allow IMDSv2 enforcement☆141Updated last year
- Convert cloudtrail data to MITRE ATT&CK Sightings☆80Updated 2 years ago
- Continuous Audit Metrics☆26Updated 11 months ago
- Uses the AWS Cloud Control API to list resources that are present in a given AWS account and region(s). Discovered resources are written …☆173Updated last month
- Example policies demonstrating how to implement a data perimeter on AWS.☆154Updated last week
- Runs IAM policy linting and security checks against either a single AWS account or a set of member accounts of an AWS Organization.☆142Updated last month
- Gathers AWS inventory and outputs CSV in the format for FedRAMP SSP☆36Updated 6 years ago