matthewdfuller / safer-scps
Safer AWS SCP deployments via real-time monitoring
☆50Updated last year
Alternatives and similar repositories for safer-scps:
Users that are interested in safer-scps are comparing it to the libraries listed below
- Scripts to quickly fix security and compliance issues☆26Updated last year
- AWS SSO Reporter☆54Updated last year
- SCP management tool☆131Updated last year
- Crowdsourced list of sensitive IAM Actions☆144Updated 5 months ago
- ☆22Updated 2 years ago
- Generates runbooks for GuardDuty findings☆35Updated 9 months ago
- Listing of resources for example AWS Service Control Policies (SCPs)☆16Updated last year
- Example policies demonstrating how to implement a data perimeter on AWS.☆153Updated this week
- ☆116Updated 3 weeks ago
- Expand IAM Actions with Wildcards☆29Updated last week
- A cloud security tool to search and clean up unused AWS access keys, written in Go.☆49Updated 2 years ago
- Identify all permitted data paths originating from the Internet to Network Interfaces within AWS Accounts across the entire AWS Organizat…☆39Updated last year
- AWS honey token manager☆87Updated 8 months ago
- PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…☆59Updated 3 years ago
- To clean up your AWS AMIs: First, include AMIs by name or tag. Second, exclude AMIs in use, younger than N days, or the newest N images. …☆33Updated 2 weeks ago
- Runs IAM policy linting and security checks against either a single AWS account or a set of member accounts of an AWS Organization.☆142Updated last month
- A collection of documented and undocumented AWS API models☆33Updated 4 months ago
- Publicly-listed AWS account IDs for easy lookup. Great for cleaning up false positives from unknown Account IDs in Cloudtrail☆38Updated 10 months ago
- This implementation demonstrates the AWS Identity and Access Management (IAM) Access Analyzer policy validation capability. Learn how to …☆24Updated 2 years ago
- Analyzes CloudTrail data of a given AWS account and generates a summary of recently active IAM principals, API calls they made, as well a…☆160Updated 2 weeks ago
- Finders Keypers: AWS KMS Encryption Key Usage and Blast Radius Finder☆33Updated 4 months ago
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆61Updated last year
- Convert cloudtrail data to MITRE ATT&CK Sightings☆79Updated 2 years ago
- A Golang program to rotate AWS & GCP account keys☆65Updated last month
- CloudSplaining on AWS Managed Policies☆41Updated this week
- Data perimeter helper is a tool that helps you design and anticipate the impact of your data perimeter controls☆16Updated last month
- ☆21Updated last year
- ☆29Updated 5 months ago
- Collection of example Service Control Policies (SCPs) that are useful for sandbox and training AWS accounts.☆148Updated 4 months ago
- The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…☆40Updated 2 years ago