awslabs / security-hub-compliance-analyzerLinks
A compliance analysis tool which enables organizations to more quickly articulate their compliance posture and also generate supporting evidence artifacts
☆50Updated last month
Alternatives and similar repositories for security-hub-compliance-analyzer
Users that are interested in security-hub-compliance-analyzer are comparing it to the libraries listed below
Sorting:
- Threat model for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach☆158Updated 2 years ago
- ☆58Updated last week
- This solutions facilitates rapid deployment of Prowler, full AWS Organization analysis, and finding processing as part of a security post…☆62Updated 5 months ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated 2 years ago
- A list of cloud security tools and vendors.☆179Updated last year
- ☆123Updated 5 months ago
- Lambda function that streamlines containment of an AWS account compromise☆345Updated last year
- Coalfire AWS RAMP/pak Reference Architecture☆37Updated last year
- Crowdsourced list of sensitive IAM Actions☆155Updated last year
- Various deployments of the OSCAL editor☆47Updated last year
- SCP management tool☆134Updated 2 years ago
- A collection of projects supporting AWS Integration☆155Updated 2 months ago
- Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. Cl…☆170Updated last year
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.☆186Updated 4 months ago
- Uses the AWS Cloud Control API to list resources that are present in a given AWS account and region(s). Discovered resources are written …☆178Updated 6 months ago
- Generates runbooks for GuardDuty findings☆39Updated last year
- Create custom auto-remediation solutions using serverless functions in the cloud.☆54Updated 2 years ago
- Runs IAM policy linting and security checks against either a single AWS account or multiple member accounts of an AWS Organization.☆151Updated 2 months ago
- A repository of resources discussing the Public Sectors push for Zero Trust along with associated resources for learning on the topic.☆42Updated 3 years ago
- Threat Designer is a GenerativeAI application designed to automate and streamline the threat modeling process for secure system design.☆160Updated this week
- An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.☆214Updated last week
- Cloud Commotion intends to cause chaos to simulate security incidents☆146Updated last year
- Adaptive AWS Zero Trust Policy made easy: Auto-generate least-privilege policies based on user activity in real time! Accelerate the adop…☆75Updated last year
- ☆97Updated last year
- Automated Forensics Orchestrator for Amazon EC2 and EKS is a self-service AWS Guidance implementation that enterprise customers can deplo…☆65Updated 3 months ago
- List of vendors that do not allow IMDSv2 enforcement☆143Updated last year
- An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.☆117Updated 2 months ago
- List of known AWS accounts☆239Updated 2 months ago
- AWS SSO Reporter☆55Updated 6 months ago
- GitHub action to scan container images with Palo Alto Networks' Prisma Cloud☆59Updated 7 months ago