matthewdfuller / safer-scpsView external linksLinks
Safer AWS SCP deployments via real-time monitoring
☆56Sep 30, 2023Updated 2 years ago
Alternatives and similar repositories for safer-scps
Users that are interested in safer-scps are comparing it to the libraries listed below
Sorting:
- ☆30Jan 13, 2026Updated last month
- Cloudformation Template and Lambda to detect if Instance Profile credentials are being used outside your AWS Account.☆29Aug 18, 2019Updated 6 years ago
- Assess certain AWS network configurations☆12Aug 22, 2018Updated 7 years ago
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆141Jan 2, 2025Updated last year
- Automate the AWS GuardDuty account invitation lifecycle for all of your organizations AWS accounts in all regions as well as aggregate an…☆66Apr 10, 2023Updated 2 years ago
- Scalable integrity framework for ABAC on AWS☆56Mar 14, 2025Updated 11 months ago
- This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs☆39Sep 25, 2024Updated last year
- A collection of documented and undocumented AWS API models☆53Nov 21, 2025Updated 2 months ago
- SCP management tool☆135Oct 23, 2023Updated 2 years ago
- Scripts to quickly fix security and compliance issues☆28Updated this week
- ☆18Jul 30, 2024Updated last year
- Collection of example Service Control Policies (SCPs) that are useful for sandbox and training AWS accounts.☆161Dec 22, 2025Updated last month
- Bare minimum AWS Security Alerting and Secure by default Configuration☆511May 15, 2025Updated 8 months ago
- KYE: Know Your Enemies - Check external access on your AWS account☆129Apr 25, 2025Updated 9 months ago
- A Golang program to rotate AWS & GCP account keys☆67May 12, 2025Updated 9 months ago
- Tracker for Encryption by Default for AWS Resources☆14Apr 10, 2025Updated 10 months ago
- A tool for quickly evaluating IAM permissions in AWS.☆75May 27, 2024Updated last year
- Independently deploy customized honeyservices in AWS to trigger alerts on unauthorized access. It utilizes a dedicated CloudTrail for pre…☆51Nov 16, 2024Updated last year
- ☆157Jul 8, 2023Updated 2 years ago
- Spotter is a comprehensive Kubernetes security scanner that uses CEL-based rules to identify security vulnerabilities, misconfigurations,…☆70Sep 13, 2025Updated 5 months ago
- yams is a Go library, server, and CLI providing foundational capabilities to simulate access for AWS IAM policies☆35Jan 21, 2026Updated 3 weeks ago
- CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…☆88Feb 7, 2026Updated last week
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆113Nov 13, 2024Updated last year
- ☆122Aug 29, 2024Updated last year
- Scripts to quickly fix security and compliance issues☆106Nov 22, 2023Updated 2 years ago
- ☆93Dec 1, 2025Updated 2 months ago
- ☆124May 26, 2025Updated 8 months ago
- Prowler Studio is an AI assistant that helps you to create threat detection checks, remediations and update compliance frameworks for Pro…☆45Feb 7, 2026Updated last week
- Generates runbooks for GuardDuty findings☆38Jun 24, 2024Updated last year
- Example AWS Service control policies to get started or mature your usage of AWS SCPs.☆283Jan 14, 2026Updated last month
- This Terraform module consists of the configuration for automating the remediation of AWS EC2 vulnerabilities using AWS Inspector finding…☆49Jul 4, 2025Updated 7 months ago
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…☆172Updated this week
- AWS Metadata Proxy for protection against SSRF☆68Mar 3, 2020Updated 5 years ago
- Saludetes tipicos☆10Oct 11, 2023Updated 2 years ago
- The purpose this solution provides is automated notifications for how many passed, not passed, failed, and warning findings for each memb…☆10Dec 5, 2022Updated 3 years ago
- Minimum DevSecOps with Monitoring Options on Amazon EKS☆13Jan 9, 2026Updated last month
- Access Undenied parses AWS AccessDenied CloudTrail events, explains the reasons for them, and offers actionable remediation steps. Open-s…☆266Jan 26, 2023Updated 3 years ago
- Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. Cl…☆173May 16, 2024Updated last year
- ☆228Jan 29, 2026Updated 2 weeks ago