mitiga / log4shell-cloud-scanner
we are providing DevOps and security teams script to identify cloud workloads that may be vulnerable to the Log4j vulnerability(CVE-2021-44228) in their AWS account. The script enables security teams to identify external-facing AWS assets by running the exploit on them, and thus be able to map them and quickly patch them
☆13Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for log4shell-cloud-scanner
- A curated list of Cloud Security techniques and tools☆30Updated last year
- A terraform module to install the prerequisites for cloud-custodian☆10Updated 11 months ago
- Ansible based WSL windows developer environment bootstrap☆10Updated 4 months ago
- Zerotier Chef Cookbook☆0Updated 8 months ago
- Repository for lab materials for the Advanced Cloud Security and Applied DevSecOps training class.☆11Updated 5 years ago
- Deceptive tradecraft should be fun and light, not stern and stressful. It is cool to be cute.☆13Updated 11 months ago
- Appilot is a Platform for ready to use Social Media Automation Bots on Real Devices, Android and Emulators. NO ADB, NO LAPTOP Needed.☆18Updated 3 weeks ago
- Sample code snippets for consuming the CloudSploit API☆13Updated last year
- Policy Pipeline : place an SDLC around your compliance documentation with a pipeline that renders policy-as-code to human friendly format…☆11Updated 4 years ago
- The Auditree data gathering and reporting tool.☆13Updated 2 months ago
- An extreme bootcamp to enable teams to build DevSecOps into their environment.☆9Updated 7 years ago
- Scan SSL based TCP services, ips, ports and network ranges to obtain certificate expiry data. Get automated alerts about certificates exp…☆29Updated 8 years ago
- Looks for GitHub org users without 2FA turned on☆9Updated 8 years ago
- A lambda function that checks your account for Public buckets and emails you whenever a new public s3 bucket is created☆14Updated 6 years ago
- Tool to tackle problematic dangling domains in Amazon Web Services.☆13Updated 7 years ago
- Zsh and Vim on new Linux boxen.☆16Updated 2 years ago
- InSpec Profile to validate the secure configuration of aws-rds-infrastructure-cis-baseline, against CIS's Amazon Web Services Three-tier …☆13Updated 2 years ago
- Defensive S3 Bucket Squating☆30Updated 6 years ago
- Ossec cookbook for Chef, with secure & automated key management☆21Updated 11 years ago
- GitOps for Teams (experimental hard fork of atlantis)☆14Updated 5 years ago
- Packer.io Scripts to build the SIFT VM(s)☆11Updated 4 years ago
- Nginx Baseline - InSpec Profile☆10Updated 3 years ago
- Proof of Value Terraform Scripts to utilize Amazon Web Services (AWS) Security, Identity & Compliance Services to Support your AWS Accoun…☆15Updated 4 years ago
- Pritunl Zero bastion server☆12Updated last month
- The future of DevOps☆11Updated 2 years ago
- AWS container security survey 2020☆11Updated 3 years ago
- Darkbit Cloud Security Tools☆25Updated 4 years ago
- S3Insights is a platform for efficiently deriving security insights about S3 data through metadata analysis☆11Updated 2 months ago
- Tools to make CI Packer builds awesome☆23Updated 5 months ago