infralicious / awesome-service-control-policies
Awesome AWS service control policies (SCPs)
☆20Updated last week
Related projects ⓘ
Alternatives and complementary repositories for awesome-service-control-policies
- ☆21Updated last year
- Implements OPA-based preventive security controls for AWS Infrastructure using Terraform Infrastructure as Code (IaC), that can establish…☆38Updated 11 months ago
- Terraform module to provision Service Control Policies (SCP) for AWS Organizations, Organizational Units, and AWS accounts☆50Updated last month
- CloudCustodian Rules engine for cloud security and governance, DSL in yaml for policies to query, filter, and take actions on resources☆18Updated last year
- Configure and deploy AWS Security Hub.☆15Updated last year
- Terraform module to suppress specific events from security hub based on a dynamodb based configuration.☆18Updated last week
- Tag instances & databases with cron-style stop/start schedules to cut AWS costs. Also schedule EBS, EC2 & RDS backups, plus CloudFormatio…☆35Updated 2 years ago
- Safer AWS SCP deployments via real-time monitoring☆43Updated last year
- ☆22Updated last year
- Combines AWS Organizations Service Control Policies (SCP)☆52Updated 7 months ago
- The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…☆40Updated last year
- ☆41Updated last year
- A reusable workflow to show how to orchestrate many iterations of an action concurrently, in a single pane of glass. See medium write-up …☆10Updated last week
- A library of example Spacelift policies☆43Updated last month
- Run compliance and security controls to detect Terraform AWS resources deviating from security best practices prior to deployment using P…☆25Updated 3 weeks ago
- Kickstart and manage your AWS Organization via Terraform☆71Updated this week
- Slack alert bot for matching Github Audit Events☆10Updated last week
- Example policies demonstrating how to implement a data perimeter on AWS.☆125Updated last week
- Identify all permitted data paths originating from the Internet to Network Interfaces within AWS Accounts across the entire AWS Organizat…☆36Updated last year
- This module configures AWS Config, a service that enables you to assess, audit, and evaluate the configurations of your AWS resources.☆46Updated last month
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- Terraform plan analyzer using Amazon Bedrock☆25Updated 3 weeks ago
- SCP management tool☆126Updated last year
- Work with AWS ARNs programmatically and more☆28Updated 4 months ago
- Example code for setting up CIS Benchmarks using EventBridge☆19Updated 2 years ago
- ☆13Updated 9 months ago
- vscode extension for tfsec☆30Updated last year
- Use Cloud Control API to remediate drift that was detected on a CloudFormation stack☆48Updated 5 months ago
- Expand IAM Actions with Wildcards☆26Updated 3 weeks ago
- Terraform module for Policy Sentry.☆24Updated 4 years ago