joshlarsen / aws-recon

Related projects ⓘ

Alternatives and complementary repositories for aws-recon

• duo-labs / cloudtracker
  CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.
  ☆885Updated 2 years ago
• SummitRoute / aws_exposable_resources
  Resource types that can be publicly exposed on AWS
  ☆316Updated 2 years ago
• flosell / trailscraper
  A command-line tool to get valuable information out of AWS CloudTrail
  ☆773Updated this week
• turnerlabs / antiope
  AWS Inventory and Compliance Framework
  ☆223Updated last year
• nccgroup / PMapper
  A tool for quickly evaluating IAM permissions in AWS.
  ☆1,430Updated 3 months ago
• nccgroup / aws-inventory
  Discover resources created in an AWS account.
  ☆707Updated 7 months ago
• jonrau1 / ElectricEye
  ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring su…
  ☆936Updated this week
• WithSecureLabs / awspx
  A graph-based tool for visualizing effective access and resource relationships in AWS environments.
  ☆920Updated 2 years ago
• awslabs / aws-cloudsaga
  AWS CloudSaga - Simulate security events in AWS
  ☆442Updated this week
• awslabs / aws-security-assessment-solution
  An AWS tool to help you create a point in time assessment of your AWS account using Prowler.
  ☆515Updated this week
• Netflix-Skunkworks / policyuniverse
  Parse and Process AWS IAM Policies, Statements, ARNs, and wildcards.
  ☆427Updated 4 months ago
• salesforce / aws-allowlister
  Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frame…
  ☆224Updated last year
• duo-labs / parliament
  AWS IAM linting library
  ☆1,045Updated 3 months ago
• domain-protect / domain-protect
  OWASP Domain Protect - prevent subdomain takeover
  ☆397Updated last month
• OpenCSPM / opencspm
  Open Cloud Security Posture Management Engine
  ☆333Updated 2 years ago
• Skyscanner / cfripper
  Library and CLI tool for analysing CloudFormation templates and check them for security compliance.
  ☆399Updated this week
• zoph-io / MAMIP
  [MAMIP] Monitor AWS Managed IAM Policies Changes
  ☆473Updated this week
• ScaleSec / terraform_aws_scp
  AWS Organizations Service Control Policies (SCPs) written in HashiCorp Terraform.
  ☆231Updated 3 weeks ago
• rams3sh / Aaia
  AWS Identity and Access Management Visualizer and Anomaly Finder
  ☆287Updated 4 months ago
• zoph-io / aws-security-survival-kit
  Bare minimum AWS Security Alerting and Configuration
  ☆460Updated 3 months ago
• common-fate / iamzero
  Identity & Access Management simplified and secure.
  ☆249Updated last year
• tenable / access-undenied-aws
  Access Undenied parses AWS AccessDenied CloudTrail events, explains the reasons for them, and offers actionable remediation steps. Open-s…
  ☆259Updated last year
• Netflix-Skunkworks / aardvark
  Aardvark is a multi-account AWS IAM Access Advisor API
  ☆472Updated 2 weeks ago
• awslabs / amazon-guardduty-tester
  This repository can be used to generate and evaluate findings detected by Amazon GuardDuty
  ☆341Updated 3 months ago
• BishopFox / iam-vulnerable
  Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
  ☆477Updated 9 months ago
• dowjones / hammer
  Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)
  ☆434Updated last year
• aws-solutions / automated-security-response-on-aws
  Automated Security Response on AWS is an add-on solution that works with AWS Security Hub to provide a ready-to-deploy architecture and a…
  ☆395Updated last month
• awslabs / assisted-log-enabler-for-aws
  Assisted Log Enabler for AWS - Find AWS resources that are not logging, and turn them on.
  ☆225Updated this week
• nccgroup / sadcloud
  A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure
  ☆656Updated last year