infralicious / awesome-service-control-policiesLinks
Awesome AWS service control policies (SCPs), Resource Control Policies (RCPs), and other organizational policies
☆28Updated 4 months ago
Alternatives and similar repositories for awesome-service-control-policies
Users that are interested in awesome-service-control-policies are comparing it to the libraries listed below
Sorting:
- SCP management tool☆133Updated last year
- ☆12Updated last year
- Expand IAM Actions with Wildcards☆33Updated this week
- Implements OPA-based preventive security controls for AWS Infrastructure using Terraform Infrastructure as Code (IaC), that can establish…☆41Updated last year
- Terraform module to Automatically suppress findings recorded by the AWS Security Hub service based on a pre-defined and configurable supp…☆19Updated last month
- Terraform module to provision Service Control Policies (SCP) for AWS Organizations, Organizational Units, and AWS accounts☆53Updated 2 months ago
- A cloud security tool to search and clean up unused AWS access keys, written in Go.☆51Updated 3 years ago
- CloudCustodian Rules engine for cloud security and governance, DSL in yaml for policies to query, filter, and take actions on resources☆20Updated 2 years ago
- Crowdsourced list of sensitive IAM Actions☆154Updated 10 months ago
- Runs IAM policy linting and security checks against either a single AWS account or multiple member accounts of an AWS Organization.☆146Updated 3 weeks ago
- ☆21Updated 2 years ago
- AWS VPC Subnets Watcher☆78Updated 2 years ago
- ☆42Updated last year
- Combines AWS Organizations Service Control Policies (SCP)☆55Updated this week
- Make AWS IAM policies smaller by adding wildcards to actions.☆19Updated this week
- Safer AWS SCP deployments via real-time monitoring☆55Updated last year
- Run compliance and security controls to detect Terraform AWS resources deviating from security best practices prior to deployment using P…☆28Updated 3 weeks ago
- Uses the AWS Cloud Control API to list resources that are present in a given AWS account and region(s). Discovered resources are written …☆176Updated 4 months ago
- This repository contains a sample IAM permissions boundary as a starting point for creating your own permissions boundary to meet the s…☆84Updated 6 months ago
- Scripts and IaC to create a ransomware resilient AWS Backup System☆17Updated 2 years ago
- Collection of example Service Control Policies (SCPs) that are useful for sandbox and training AWS accounts.☆153Updated 2 months ago
- Collect IAM information from all your AWS organization, accounts, and resources.☆42Updated this week
- This solution supports a bidirectional integration between Security Hub and JIRA. Issues can be either created automatically or manually …☆41Updated last year
- Example policies demonstrating how to implement a data perimeter on AWS.☆176Updated last week
- Stop EC2 instances and RDS/Aurora databases overnight by tagging them with cron schedules, to cut AWS costs. Trigger CloudFormation stack…☆63Updated 2 months ago
- The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…☆40Updated 2 years ago
- A Dashboard for AWS ECR usage based on CloudWatch log insight queries☆70Updated last year
- This is a project to quickly accelerate the adoption of CloudFormation Guard syntax for use in AWS Config rules. The advantage of CloudF…☆12Updated 9 months ago
- Validate all your Customer IAM Policies against AWS Access Analyzer - Policy Validation☆43Updated 4 years ago
- Work with AWS ARNs programmatically and more☆29Updated last year