infralicious / awesome-service-control-policiesLinks
Awesome AWS service control policies (SCPs), Resource Control Policies (RCPs), and other organizational policies
☆32Updated last month
Alternatives and similar repositories for awesome-service-control-policies
Users that are interested in awesome-service-control-policies are comparing it to the libraries listed below
Sorting:
- Implements OPA-based preventive security controls for AWS Infrastructure using Terraform Infrastructure as Code (IaC), that can establish…☆46Updated 2 years ago
- SCP management tool☆135Updated 2 years ago
- Validate all your Customer IAM Policies against AWS Access Analyzer - Policy Validation☆43Updated 4 years ago
- ☆12Updated 2 years ago
- Expand IAM Actions with Wildcards☆34Updated last week
- CloudCustodian Rules engine for cloud security and governance, DSL in yaml for policies to query, filter, and take actions on resources☆20Updated 2 years ago
- AWS VPC Subnets Watcher☆79Updated 2 years ago
- Make AWS IAM policies smaller by adding wildcards to actions.☆19Updated last week
- Terraform module to Automatically suppress findings recorded by the AWS Security Hub service based on a pre-defined and configurable supp…☆19Updated last week
- Terraform module to provision Service Control Policies (SCP) for AWS Organizations, Organizational Units, and AWS accounts☆56Updated 3 weeks ago
- A cloud security tool to search and clean up unused AWS access keys, written in Go.☆51Updated 3 years ago
- ☆21Updated 2 years ago
- ☆42Updated 2 years ago
- Combines AWS Organizations Service Control Policies (SCP)☆55Updated last month
- Runs IAM policy linting and security checks against either a single AWS account or multiple member accounts of an AWS Organization.☆151Updated 2 weeks ago
- A tool to show what AWS account and identity you're using.☆56Updated 2 years ago
- Stop EC2 instances and RDS/Aurora databases overnight by tagging them with cron schedules, to cut AWS costs. Trigger CloudFormation stack…☆74Updated 2 months ago
- Crowdsourced list of sensitive IAM Actions☆158Updated last year
- ☆18Updated 4 months ago
- This is a project to quickly accelerate the adoption of CloudFormation Guard syntax for use in AWS Config rules. The advantage of CloudF…��☆12Updated last year
- The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…☆41Updated 3 years ago
- Uses the AWS Cloud Control API to list resources that are present in a given AWS account and region(s). Discovered resources are written …☆181Updated 2 weeks ago
- Safer AWS SCP deployments via real-time monitoring☆56Updated 2 years ago
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆60Updated 2 years ago
- This module configures AWS Config, a service that enables you to assess, audit, and evaluate the configurations of your AWS resources.☆48Updated last month
- A Dashboard for AWS ECR usage based on CloudWatch log insight queries☆70Updated last year
- This repository contains a sample IAM permissions boundary as a starting point for creating your own permissions boundary to meet the s…☆90Updated 10 months ago
- Run compliance and security controls to detect Terraform AWS resources deviating from security best practices prior to deployment using P…☆27Updated 4 months ago
- Use SQL to instantly query resources, data sources and more from Terraform code. Open source CLI. No DB required.☆29Updated last week
- Utility that allows you to execute terraform and terragrunt functions from the command line for quick tests and looking at underlying cty…☆31Updated last year