jdyke / gcp-iam-analyzer
Compares and analyzes GCP IAM roles.
☆76Updated 5 months ago
Related projects ⓘ
Alternatives and complementary repositories for gcp-iam-analyzer
- GCP CSPM using Google Sheets☆34Updated 5 months ago
- Convert cloudtrail data to MITRE ATT&CK Sightings☆79Updated 2 years ago
- ☆109Updated this week
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆57Updated last year
- Clean accounts over permissions in GCP infra at scale☆71Updated last year
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.☆30Updated last month
- Generates runbooks for GuardDuty findings☆34Updated 4 months ago
- https://breaches.cloud☆36Updated last month
- PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…☆58Updated 2 years ago
- AWS honey token manager☆84Updated 3 months ago
- HashiCorp-relevant rules for the Semgrep code analysis tool☆37Updated last year
- Audit log wall of shame.☆41Updated last month
- ☆14Updated 2 years ago
- Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).☆138Updated 8 months ago
- Safer AWS SCP deployments via real-time monitoring☆46Updated last year
- IAM-Deescalate helps mitigate privilege escalation risk in AWS identity and access management (IAM)☆96Updated 2 years ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆59Updated last year
- AWS docs, guides, and other tools☆76Updated last year
- ☆107Updated 2 months ago
- Slack bot which promotes Defense in Depth/Zero Trust security practices☆24Updated last year
- ☆38Updated 4 months ago
- sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.☆81Updated 3 years ago
- CloudSplaining on AWS Managed Policies☆41Updated this week
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…☆65Updated last year
- Protect against subdomain takeover☆92Updated 6 months ago
- Deliberately vulnerable AWS resources for security assessment demos☆31Updated 2 years ago
- ☆24Updated 2 weeks ago
- AWS SSO Reporter☆54Updated last year
- Knowledge Report Alert & Normalization Generator☆27Updated 8 months ago
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…☆115Updated last month