jchrisfarris / detect-credential-compromise
Cloudformation Template and Lambda to detect if Instance Profile credentials are being used outside your AWS Account.
☆28Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for detect-credential-compromise
- This command line tool counts the number of resources in different categories across Amazon regions.☆56Updated 4 years ago
- Public tables and other research that can accept PRs. Please visit the web link.☆44Updated 5 years ago
- Assess certain AWS network configurations☆11Updated 6 years ago
- AWS Metadata Proxy for protection against SSRF☆68Updated 4 years ago
- Varna: Quick & Cheap AWS CloudTrail Monitoring with Event Query Language (EQL)☆51Updated last year
- A python module for orchestrating content acquisitions and analysis via amazon ssm.☆58Updated last year
- notes on configuring aws organizations☆11Updated 7 years ago
- The original AWS security enforcer™☆59Updated 5 years ago
- PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…☆58Updated 2 years ago
- Scripts to quickly fix security and compliance issues☆25Updated 11 months ago
- Enhance the security of the EC2 metadata service. (Obsolete thanks to Instance Metadata Service Version 2, see note in README)☆31Updated 4 years ago
- Glue workflow to convert CloudTrail logs to Athena-friendly Parquet format☆47Updated 6 months ago
- Github action for linting AWS IAM policy documents☆36Updated last year
- Updated incident response generator for training classes☆41Updated 3 years ago
- Framework for reviewing and responding to events in AWS Flow Logs using Lambda Function☆45Updated 10 months ago
- Blazing CloudTrail since 2018☆134Updated 5 years ago
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.☆62Updated 5 years ago
- Example detection of compromise credentials in AWS☆119Updated 6 years ago
- Automate the AWS GuardDuty account invitation lifecycle for all of your organizations AWS accounts in all regions as well as aggregate an…☆66Updated last year
- Reapsaw is a continuous security devsecops tool, which helps in enabling security into CI/CD Pipeline. It supports coverage for multiple …☆41Updated 4 years ago
- Manage GuardDuty At Enterprise Scale☆22Updated 4 years ago
- Cloud multi-account metadata management tool.☆87Updated 4 years ago
- CloudSplaining on AWS Managed Policies☆41Updated this week
- Proof of concept incident response demo using SSM and AWS Fargate.☆13Updated 4 years ago
- A collection of useful queries that can be used to verify compliance/security across your AWS assets☆31Updated 5 years ago
- A Lambda-powered Security Orchestration framework for AWS GuardDuty☆51Updated 4 years ago
- Example of how to run the Clair image scanner on AWS ECS Fargate☆27Updated 6 years ago
- Workshop exercise materials for re:Invent 2017 - SID 341: Using AWS CloudTrail Logs for Scalable, Automated Anomaly Detection☆51Updated 5 years ago