mitre / aws-rds-infrastructure-cis-baseline

Related projects: ⓘ

• latacora / remediate-AWS-IMDSv1
  Simple tool to identify and remediate the use of the AWS EC2 IMDSv1.
  ☆16Updated 3 years ago
• prolsen / aws_responder
  AWS Incident Response Kit (AIRK) - AWS Incident Response
  ☆21Updated 4 years ago
• gyrospectre / squyre
  Security Alert Decoration
  ☆25Updated 4 months ago
• ramimac / breach-list-database
  A meta-database collecting resources that compile lists of breaches
  ☆17Updated 5 months ago
• ekristen / libnuke
  Common Golang Packages for use by the Various Cloud Nuke Tools
  ☆22Updated last week
• mitre / heimdall_tools
  DEPRECATED: A set of utilities for converting and working with compliance data for viewing in the heimdall applications
  ☆35Updated 2 years ago
• bridgecrewio / cdkgoat
  CdkGoat is Bridgecrew's "Vulnerable by Design" AWS CDK repository. CdkGoat is a learning and training project that demonstrates how commo…
  ☆43Updated last year
• crypsisgroup / ebs-direct-sec-tools
  Fun tools around the EBS Direct API
  ☆17Updated 3 years ago
• ComplianceAsCode / oscal
  OSCAL SSP content for technologies shipped by Red Hat
  ☆15Updated last year
• chainguard-dev / github-audit-alerter
  Slack alert bot for matching Github Audit Events
  ☆10Updated 3 weeks ago
• offensive-terraform / offensive-terraform.github.io
  Offensive Terraform Website
  ☆44Updated 3 years ago
• carta / krang
  Knowledge Report Alert & Normalization Generator
  ☆27Updated 6 months ago
• swagitda / security-decision-trees-graphviz
  Decision trees generated via Graphviz to inform pragmatic threat modelling.
  ☆10Updated 3 years ago
• SummitRoute / isolated_network_experiment
  CDK app to setup an isolated AWS network to experiment with ways of exfiltrating data
  ☆18Updated 2 years ago
• GoogleCloudPlatform / assured-workloads-terraform
  ☆13Updated last month
• kurmiashish / S3Insights
  S3Insights is a platform for efficiently deriving security insights about S3 data through metadata analysis
  ☆11Updated 2 weeks ago
• hotnops / AWSRoleJuggler
  A toolset to juggle AWS roles for persistent access
  ☆47Updated last month
• tenchi-security / camp
  CloudSplaining on AWS Managed Policies
  ☆41Updated this week
• witoff / aws-organizations
  notes on configuring aws organizations
  ☆11Updated 7 years ago
• center-for-threat-informed-defense / defending-iaas-with-attack
  Defending IaaS with ATT&CK is a project to create a collection of ATT&CK techniques relevant to a Linux IaaS environment, as well as a me…
  ☆13Updated 6 months ago
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 2 years ago
• vectra-ai-research / log4j-aws-sandbox
  A set of AWS resources for testing the Log4Shell vulnerability, deployable with terraform
  ☆12Updated 2 years ago
• sHesl / amazon-where-services
  Automated determination of which AWS services run where
  ☆20Updated this week
• darkbitio / tools
  Darkbit Cloud Security Tools
  ☆25Updated 3 years ago
• disruptops / IncidentResponseGenerator
  Updated incident response generator for training classes
  ☆41Updated 3 years ago
• bridgecrewio / kustomizegoat
  Vulnerable Kustomize Kubernetes templates for training and education
  ☆47Updated 2 years ago
• bridgecrewio / HowCrew
  Super-powered know how tools for AWS and GCP cloud security
  ☆14Updated last year
• WarnerMedia / aws-guardduty-enterprise
  Manage GuardDuty At Enterprise Scale
  ☆22Updated 4 years ago
• steeve85 / tfviz
  Visualize your Terraform files
  ☆34Updated 4 years ago
• wv8672 / AWS-Linux-Mem-Dump
  A Python, Boto3 script that leverages a forensic volume to attach & mount to a selected instance, run a memory dump, unmount and detach f…
  ☆11Updated 4 years ago