carbonetes / brainiacLinks
BrainIAC uses static code analysis to analyze IAC code to detect security issues before deployment. This tool can scan for issues like security policy misconfigurations, insecure cloud-based services, and compliance issues.
☆70Updated 11 months ago
Alternatives and similar repositories for brainiac
Users that are interested in brainiac are comparing it to the libraries listed below
Sorting:
- Generates SBOMs for container images, filesystems, archives, and more to Discover packages and libraries Highly scalable data pipelines f…☆107Updated last month
- Jacked provides organizations with a more comprehensive look at their application to take calculated actions and create a better security…☆103Updated last month
- A Github Action that utilizes Diggity to generate software bill-of-materials (SBOM).☆14Updated 2 years ago
- Is your AWS perimeter secure? Use Powerpipe and Steampipe to check your AWS accounts for public resources, resources shared with untrust…☆112Updated this week
- Identify all permitted data paths originating from the Internet to Network Interfaces within AWS Accounts across the entire AWS Organizat…☆39Updated last year
- Curated list of security tools☆66Updated last year
- sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.☆82Updated 3 years ago
- Discover vulnerabilities and container image misconfiguration in production environments.☆56Updated 2 weeks ago
- Offensive Terraform Website☆45Updated 4 years ago
- A cloud security tool to search and clean up unused AWS access keys, written in Go.☆50Updated 2 years ago
- The SOCless automation framework☆140Updated 6 months ago
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆110Updated last week
- InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark☆78Updated 7 months ago
- Holds the public Hacking the Cloud CTFs.☆56Updated last year
- SEDATED® Project (Sensitive Enterprise Data Analyzer To Eliminate Disclosure)☆110Updated 6 months ago
- List of known AWS accounts☆219Updated 2 weeks ago
- AWS honey token manager☆87Updated last year
- Assess certain AWS network configurations☆12Updated 6 years ago
- A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.☆193Updated last year
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆54Updated last year
- AWS SSO Reporter☆54Updated 3 months ago
- A simple tool to audit your AWS/GCP infrastructure for misconfiguration or potential security issues with plugins integration☆329Updated last week
- CloudSplaining on AWS Managed Policies☆44Updated this week
- A Golang program to rotate AWS & GCP account keys☆66Updated 3 months ago
- A meta-database collecting resources that compile lists of breaches☆21Updated 9 months ago
- PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…☆60Updated 3 years ago
- A curated list of security tools for Hackers & Builders!☆100Updated last year
- Static analysis for CloudFormation templates to identify common misconfiguration☆57Updated 3 years ago
- Simple tool to identify and remediate the use of the AWS EC2 IMDSv1.☆16Updated 4 years ago
- Clean accounts over permissions in GCP infra at scale☆71Updated 2 years ago