awslabs / threat-composer

Related projects ⓘ

Alternatives and complementary repositories for threat-composer

• aws-samples / aws-customer-playbook-framework
  This repository provides sample templates for security playbooks against various scenarios when using Amazon Web Services.
  ☆543Updated this week
• awslabs / aws-cloudsaga
  AWS CloudSaga - Simulate security events in AWS
  ☆442Updated this week
• awslabs / aws-security-assessment-solution
  An AWS tool to help you create a point in time assessment of your AWS account using Prowler.
  ☆519Updated 2 weeks ago
• awslabs / automated-security-helper
  ☆387Updated last week
• awslabs / assisted-log-enabler-for-aws
  Assisted Log Enabler for AWS - Find AWS resources that are not logging, and turn them on.
  ☆225Updated this week
• aws-samples / service-control-policy-examples
  Example AWS Service control policies to get started or mature your usage of AWS SCPs.
  ☆223Updated 6 months ago
• awslabs / aws-security-analytics-bootstrap
  AWS Security Analytics Bootstrap enables customers to perform security investigations on AWS service logs by providing an Amazon Athena a…
  ☆238Updated this week
• trustoncloud / threatmodel-for-aws-s3
  ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach
  ☆151Updated last year
• orcasecurity / orca-toolbox
  ☆109Updated this week
• SummitRoute / aws_exposable_resources
  Resource types that can be publicly exposed on AWS
  ☆317Updated 2 years ago
• awslabs / aws-automated-incident-response-and-forensics
  ☆376Updated last year
• BishopFox / iam-vulnerable
  Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
  ☆480Updated 9 months ago
• SecurityRunners / CloudCommotion
  Cloud Commotion intends to cause chaos to simulate security incidents
  ☆140Updated 5 months ago
• easttimor / aws-incident-response
  ☆363Updated 8 months ago
• secengjeff / awskillswitch
  Lambda function that streamlines containment of an AWS account compromise
  ☆315Updated 11 months ago
• tenable / KaiMonkey
  KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.
  ☆96Updated 11 months ago
• wiz-sec / open-cvdb
  An open project to list all publicly known cloud vulnerabilities and CSP security issues
  ☆309Updated this week
• aws-solutions / automated-security-response-on-aws
  Automated Security Response on AWS is an add-on solution that works with AWS Security Hub to provide a ready-to-deploy architecture and a…
  ☆399Updated this week
• OpenCSPM / opencspm
  Open Cloud Security Posture Management Engine
  ☆334Updated 2 years ago
• aws-samples / aws-incident-response-playbooks
  ☆926Updated 6 months ago
• RhinoSecurityLabs / IAMActionHunter
  An AWS IAM policy statement parser and query tool.
  ☆157Updated 9 months ago
• adamshostack / 4QuestionFrame
  Shostack's 4 Question Frame for Threat Modeling
  ☆92Updated 2 years ago
• aws-samples / data-perimeter-policy-examples
  Example policies demonstrating how to implement a data perimeter on AWS.
  ☆125Updated last week
• welldone-cloud / aws-summarize-account-activity
  ☆147Updated last month
• threatcl / threatcl
  Documenting your Threat Models with HCL
  ☆401Updated 2 months ago
• nccgroup / sadcloud
  A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure
  ☆658Updated last year
• WithSecureLabs / IAMSpy
  ☆203Updated last month
• Frichetten / aws-api-models
  A collection of documented and undocumented AWS API models
  ☆27Updated this week
• fwdcloudsec / known_aws_accounts
  List of known AWS accounts
  ☆167Updated last month
• salesforce / aws-allowlister
  Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frame…
  ☆224Updated last year