mitiga / log4shell-cloud-scanner
we are providing DevOps and security teams script to identify cloud workloads that may be vulnerable to the Log4j vulnerability(CVE-2021-44228) in their AWS account. The script enables security teams to identify external-facing AWS assets by running the exploit on them, and thus be able to map them and quickly patch them
☆13Updated 3 years ago
Alternatives and similar repositories for log4shell-cloud-scanner:
Users that are interested in log4shell-cloud-scanner are comparing it to the libraries listed below
- Defensive S3 Bucket Squating☆30Updated 7 years ago
- The Auditree data gathering and reporting tool.☆13Updated 6 months ago
- Tools to make CI Packer builds awesome☆23Updated 8 months ago
- Sample code snippets for consuming the CloudSploit API☆13Updated last year
- Looks for GitHub org users without 2FA turned on☆9Updated 8 years ago
- Nginx Baseline - InSpec Profile☆10Updated 3 years ago
- A terraform module to install the prerequisites for cloud-custodian☆10Updated last year
- OSCAL SSP content for technologies shipped by Red Hat☆15Updated 2 years ago
- Automated determination of which AWS services run where☆20Updated this week
- Ansible based WSL windows developer environment bootstrap☆10Updated last month
- A low/zero interaction ssh authentication logging honeypot☆20Updated 6 months ago
- A powerful shell script tool for managing multiple SSH tunnels concurrently.☆12Updated last year
- Zerotier Chef CookbookUpdated last year
- Policy Pipeline : place an SDLC around your compliance documentation with a pipeline that renders policy-as-code to human friendly format…☆11Updated 4 years ago
- Packer.io Scripts to build the SIFT VM(s)☆11Updated 4 years ago
- GitOps for Teams (experimental hard fork of atlantis)☆14Updated 5 years ago
- Deceptive tradecraft should be fun and light, not stern and stressful. It is cool to be cute.☆13Updated last year
- Your infrastructure is moving and so is your root of trust. This project helps to define a new control plane for locking down access and…☆9Updated 8 years ago
- InSpec Profile to validate the secure configuration of aws-rds-infrastructure-cis-baseline, against CIS's Amazon Web Services Three-tier …☆14Updated 2 years ago
- Repository for lab materials for the Advanced Cloud Security and Applied DevSecOps training class.☆11Updated 5 years ago
- Certificate Utility for AWS(ACM, IAM, ALB, CLB, CloudFront)☆17Updated 7 years ago
- Highly automated, up-to-date, and well-documented repository template. Checks for common problems, Markdown, YAML, Bash, formats, lints, …☆15Updated last year
- Zsh and Vim on new Linux boxen.☆16Updated 2 years ago
- A systemd-enabled Kali Linux Docker image, in the spirit of geerlingguy/docker-debian11-ansible.☆14Updated 2 months ago
- An example for creating AWS AMIs with packer☆13Updated 7 years ago
- Tool to tackle problematic dangling domains in Amazon Web Services.☆14Updated 7 years ago
- A lambda function that checks your account for Public buckets and emails you whenever a new public s3 bucket is created☆15Updated 6 years ago
- Example Express application for collecting data from the Stethoscope app☆14Updated 6 years ago
- The original AWS security enforcer™☆60Updated 5 years ago
- Python3 script for migrating AWS EC2 Security Groups across availability regions☆13Updated 11 months ago