nozaq / amazon-linux-cis
Bootstrap script for Amazon Linux to comply CIS Amazon Linux Benchmark v2.0.0
☆58Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for amazon-linux-cis
- A small lambda script that will disable access keys older than a given amount of days.☆151Updated last year
- Show the history and changes between configuration versions of AWS resources☆69Updated 5 years ago
- Manheim's Cloud Custodian (c7n) wrapper package, policy generator, runner, and supporting tools.☆45Updated 5 months ago
- A curated list of things relating to CapitalOne's Cloud-custodian project☆88Updated 4 years ago
- [WIP] Get up and running quickly with one of our reference architecture using our fully automated cold-start process.☆154Updated 3 years ago
- Audit IAM roles and users using Access Advisor data using Python/boto3 SDK and automatically create IAM permissions boundaries to limit a…☆37Updated 4 years ago
- Checks AWS CloudFormation templates for security, reliability and conformity☆43Updated 4 years ago
- Some of my personal rules for CapitalOne's Cloud Custodian project☆43Updated 3 years ago
- Example of how to run the Clair image scanner on AWS ECS Fargate☆27Updated 6 years ago
- AWS CIS Benchmark scanner☆39Updated 7 years ago
- Convert secrets stored in AWS Secrets Manager to environment variables☆47Updated last year
- [WORK IN PROGRESS] A repo containing rule sets for cloud-custodian inside GSA AWS accounts. This repo does not contain cloud-custodian it…☆29Updated 6 years ago
- Validate all your Customer IAM Policies against AWS Access Analyzer - Policy Validation☆43Updated 3 years ago
- Enhance the security of the EC2 metadata service. (Obsolete thanks to Instance Metadata Service Version 2, see note in README)☆31Updated 4 years ago
- Automate the daily partitioning of your CloudTrail bucket in Athena☆28Updated last year
- The EBS Snapshot Custodian provides a full life cycle management of EBS Snapshots. It manages the creation and deletion of old EBS Snapsh…☆37Updated 6 years ago
- Lambda job in Python to automatically patch EC2 instances when an inspector assessment generates a CVE finding☆58Updated 6 years ago
- Easy connect on EC2 instances thanks to AWS System Manager Agent. Just use your `~/.aws/profile` to easily select the instance you want t…☆55Updated 4 years ago
- Demonstrates sending AWS findings to your Slack Channel☆56Updated last year
- Cloud multi-account metadata management tool.☆87Updated 4 years ago
- Automate the AWS GuardDuty account invitation lifecycle for all of your organizations AWS accounts in all regions as well as aggregate an…☆66Updated last year
- Run Docker containers within the context of an AWS IAM Role, and other development workflow helpers.☆58Updated this week
- This CloudWatch Events rule Lambda function evaluates AWS API calls that change Amazon EC2 security group ingress rules. The function fla…☆25Updated 5 years ago
- Example container image re-scan with Amazon ECR☆48Updated 3 years ago
- This script automates the process of running the GuardDuty multi-account workflow across a group of accounts that are in your control☆130Updated 2 months ago
- Dump your EC2 Security Groups as a CSV or JSON file☆70Updated last year
- Cloud Custodian Policies for Automated Amazon Resource Management☆59Updated 5 years ago
- Squid Proxy + AWS Fargate☆45Updated 6 months ago
- Map you AWS VPC deployment using graphviz/dot☆48Updated 4 years ago