nozaq / amazon-linux-cis
Bootstrap script for Amazon Linux to comply CIS Amazon Linux Benchmark v2.0.0
☆57Updated 3 years ago
Alternatives and similar repositories for amazon-linux-cis:
Users that are interested in amazon-linux-cis are comparing it to the libraries listed below
- Automate the AWS GuardDuty account invitation lifecycle for all of your organizations AWS accounts in all regions as well as aggregate an…☆67Updated 2 years ago
- A curated list of things relating to CapitalOne's Cloud-custodian project☆90Updated 5 years ago
- InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark☆78Updated 4 months ago
- CloudTrail and CloudWatch configuration with some basic security alarms.☆18Updated 7 years ago
- Manheim's Cloud Custodian (c7n) wrapper package, policy generator, runner, and supporting tools.☆45Updated 2 months ago
- A small lambda script that will disable access keys older than a given amount of days.☆154Updated 2 years ago
- Show the history and changes between configuration versions of AWS resources☆70Updated 6 years ago
- [WORK IN PROGRESS] A repo containing rule sets for cloud-custodian inside GSA AWS accounts. This repo does not contain cloud-custodian it…☆30Updated 7 years ago
- Example container image re-scan with Amazon ECR☆50Updated 3 years ago
- This CloudWatch Events rule Lambda function evaluates AWS API calls that change Amazon EC2 security group ingress rules. The function fla…☆25Updated 5 years ago
- Checks AWS CloudFormation templates for security, reliability and conformity☆43Updated 4 years ago
- Enhance the security of the EC2 metadata service. (Obsolete thanks to Instance Metadata Service Version 2, see note in README)☆31Updated 5 years ago
- Cloud multi-account metadata management tool.☆91Updated 4 years ago
- Easy connect on EC2 instances thanks to AWS System Manager Agent. Just use your `~/.aws/profile` to easily select the instance you want t…☆55Updated 4 years ago
- Some of my personal rules for CapitalOne's Cloud Custodian project☆45Updated 4 years ago
- Convert secrets stored in AWS Secrets Manager to environment variables☆47Updated 2 years ago
- Lambda job in Python to automatically patch EC2 instances when an inspector assessment generates a CVE finding☆58Updated 6 years ago
- Automate the daily partitioning of your CloudTrail bucket in Athena☆28Updated last year
- Audit IAM roles and users using Access Advisor data using Python/boto3 SDK and automatically create IAM permissions boundaries to limit a…☆37Updated 4 years ago
- Dump your EC2 Security Groups as a CSV or JSON file☆71Updated 2 years ago
- Combines AWS Organizations Service Control Policies (SCP)☆53Updated 3 months ago
- Run Docker containers within the context of an AWS IAM Role, and other development workflow helpers.☆58Updated 5 months ago
- Configurtion for a hardened CentOS 7 AMI built using Packer☆20Updated 6 years ago
- Encrypt EBS volumes from AWS EC2 instances☆51Updated 2 years ago
- Ansible role to apply CIS Amazon Linux Benchmark v2.0.0☆152Updated 2 years ago
- The EBS Snapshot Custodian provides a full life cycle management of EBS Snapshots. It manages the creation and deletion of old EBS Snapsh…☆37Updated 6 years ago
- Workshop exercise materials for re:Invent 2017 - SID 341: Using AWS CloudTrail Logs for Scalable, Automated Anomaly Detection☆52Updated 6 years ago
- AWS CIS Benchmark scanner☆40Updated 8 years ago
- Terraform module for creating alarms for tracking important changes and occurrences from cloudtrail.☆203Updated 4 months ago
- Example of how to run the Clair image scanner on AWS ECS Fargate☆27Updated 6 years ago