jonrau1 / AWS-DevSecOps-Factory
Sample DevSecOps pipelines (heavily biased on the "Sec") for various stacks and tools using open-source security tools and AWS native services
☆68Updated 3 years ago
Alternatives and similar repositories for AWS-DevSecOps-Factory:
Users that are interested in AWS-DevSecOps-Factory are comparing it to the libraries listed below
- ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach☆152Updated last year
- Pre-configured response & remediation playbooks for AWS Security Hub☆65Updated 3 years ago
- SCP management tool☆131Updated last year
- ☆116Updated 3 weeks ago
- Code examples for the AWS Security Blog post: How to use CI/CD to deploy and configure AWS security services with Terraform☆96Updated 3 years ago
- Example policies demonstrating how to implement a data perimeter on AWS.☆153Updated this week
- Identify all permitted data paths originating from the Internet to Network Interfaces within AWS Accounts across the entire AWS Organizat…☆39Updated last year
- AWS Certified Security Specialty (2020) course notes☆118Updated 4 years ago
- AWS Security Analytics Bootstrap enables customers to perform security investigations on AWS service logs by providing an Amazon Athena a…☆247Updated this week
- AWS Organizations Service Control Policies (SCPs) written in HashiCorp Terraform.☆237Updated 5 months ago
- CloudSplaining on AWS Managed Policies☆41Updated this week
- Create custom auto-remediation solutions using serverless functions in the cloud.☆53Updated last year
- The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…☆40Updated 2 years ago
- Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frame…☆225Updated last year
- Crowdsourced list of sensitive IAM Actions☆144Updated 5 months ago
- Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).☆142Updated last year
- ☆155Updated last year
- Safer AWS SCP deployments via real-time monitoring☆50Updated last year
- A collection of 2020 artifacts describing the major pain points, vulnerabilities and concerns with Cloud Security.☆19Updated 4 years ago
- Assisted Log Enabler for AWS - Find AWS resources that are not logging, and turn them on.☆254Updated this week
- This solution supports a bidirectional integration between Security Hub and JIRA. Issues can be either created automatically or manually …☆38Updated 8 months ago
- InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark☆78Updated 3 months ago
- ☆18Updated 2 years ago
- ☆371Updated last year
- Example code for setting up CIS Benchmarks using EventBridge☆19Updated 3 years ago
- This implementation demonstrates the AWS Identity and Access Management (IAM) Access Analyzer policy validation capability. Learn how to …☆24Updated 2 years ago
- Scripts to quickly fix security and compliance issues☆105Updated last year
- List of vendors that do not allow IMDSv2 enforcement☆141Updated 11 months ago
- Resource types that can be publicly exposed on AWS☆324Updated 3 years ago
- This solutions facilitates rapid deployment of Prowler, full AWS Organization analysis, and finding processing as part of a security post…☆55Updated 4 months ago