bridgecrewio / HowCrew
Super-powered know how tools for AWS and GCP cloud security
☆14Updated last year
Related projects: ⓘ
- Sample code snippets for consuming the CloudSploit API☆13Updated 10 months ago
- Darkbit Cloud Security Tools☆25Updated 3 years ago
- Terraform modules for CloudSploit Scanner☆14Updated 2 years ago
- ☆13Updated last year
- Policy Pipeline : place an SDLC around your compliance documentation with a pipeline that renders policy-as-code to human friendly format…☆11Updated 3 years ago
- The open source version of the AWS Security Hub documentation. To provide feedback or request changes, you can submit a pull request that…☆35Updated last year
- For use in our Tenable.IO to AWS Security Hub integration☆27Updated this week
- AWS container security survey 2020☆11Updated 3 years ago
- Proof of Value Terraform Scripts to utilize Amazon Web Services (AWS) Security, Identity & Compliance Services to Support your AWS Accoun…☆15Updated 4 years ago
- CdkGoat is Bridgecrew's "Vulnerable by Design" AWS CDK repository. CdkGoat is a learning and training project that demonstrates how commo…☆43Updated last year
- CDK app to setup an isolated AWS network to experiment with ways of exfiltrating data☆18Updated 2 years ago
- A curated collection of tools and resources for building security with a developer first approach.☆28Updated 2 years ago
- Enable Falco to read audit logs from EKS☆11Updated 3 years ago
- Simple tool to identify and remediate the use of the AWS EC2 IMDSv1.☆16Updated 3 years ago
- Like the unix tree command but for GCP Org Heirarchy☆27Updated 3 years ago
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.☆61Updated 5 years ago
- Public tables and other research that can accept PRs. Please visit the web link.☆44Updated 5 years ago
- The Auditree data gathering and reporting tool.☆12Updated 3 weeks ago
- ZAP Management Scripts☆20Updated last week
- S3Insights is a platform for efficiently deriving security insights about S3 data through metadata analysis☆11Updated 2 weeks ago
- Collection of dynamic security related helpers☆15Updated last year
- Use SQL to instantly query host, DNS and exploit information using Shodan. Open source CLI. No DB required.☆27Updated this week
- Offensive Terraform Website☆44Updated 3 years ago
- AWS managed IAM policies☆14Updated 2 years ago
- OpenCSPM Community Controls☆14Updated 3 years ago
- Tools for AWS forensics☆64Updated 8 years ago
- InSpec Profile to validate the secure configuration of aws-rds-infrastructure-cis-baseline, against CIS's Amazon Web Services Three-tier …☆13Updated 2 years ago
- Dockerfile Security Checker using OPA Rego policies with Conftest☆58Updated 2 years ago
- OSCAL SSP content for technologies shipped by Red Hat☆15Updated last year
- CloudSplaining on AWS Managed Policies☆41Updated this week