Alternatives and similar repositories for shiftleft-iac-action

Users that are interested in shiftleft-iac-action are comparing it to the libraries listed below

• StevenSmiley / aws-mine
  AWS honey token manager
  ☆89Updated last year
• DataDog / supply-chain-firewall
  Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages
  ☆215Updated last week
• aquia-inc / aws-guardduty-runbook-generator
  Generates runbooks for GuardDuty findings
  ☆38Updated last year
• SecurityRunners / CloudCommotion
  Cloud Commotion intends to cause chaos to simulate security incidents
  ☆145Updated last year
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆78Updated 11 months ago
• zmallen / cloudtrail2sightings
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆82Updated 3 years ago
• orcasecurity-research / kte
  Test & Compare different Kubernetes security offerings on EKS, GKE and AKS
  ☆40Updated last year
• caizencloud / caizen
  Harness the security superpowers of your cloud asset inventory
  ☆11Updated last year
• CloudDefenseAI / AWSZeroTrustPolicy
  Adaptive AWS Zero Trust Policy made easy: Auto-generate least-privilege policies based on user activity in real time! Accelerate the adop…
  ☆76Updated last year
• shellcromancer / audit-log-wall-of-shame
  Audit log wall of shame.
  ☆42Updated 5 months ago
• devsecflow / Cloud-Native-Assurance-Maturity-Model
  A comprehensive framework and assessment toolkit for measuring and improving Cloud Native security maturity across 8 critical business fu…
  ☆10Updated 7 months ago
• adanalvarez / TrailAlerts
  TrailAlerts is a AWS-native, serverless cloud-detection tool that lets you define simple rules as code and get rich alerts about events i…
  ☆51Updated 3 months ago
• GitGuardian / ggcanary
  GitGuardian Canary Tokens
  ☆148Updated 7 months ago
• orcasecurity / orca-toolbox
  ☆124Updated 8 months ago
• DataDog / workload-security-evaluator
  ## Auto-archived due to inactivity. ## Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Securit…
  ☆37Updated last year
• hashicorp-forge / semgrep-rules
  HashiCorp-relevant rules for the Semgrep code analysis tool
  ☆41Updated 2 years ago
• vectra-ai-research / derf
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆101Updated 2 years ago
• RhinoSecurityLabs / IAMActionHunter
  An AWS IAM policy statement parser and query tool.
  ☆197Updated last week
• Aqua-Nautilus / TrailShark
  ☆52Updated last year
• tenchi-security / camp
  CloudSplaining on AWS Managed Policies
  ☆44Updated 5 months ago
• kpolley / slackurity
  Slack bot which promotes Defense in Depth/Zero Trust security practices
  ☆24Updated 3 years ago
• marco-lancini / utils
  Useful scripts, Docker images, docker-compose apps, and Terraform modules.
  ☆149Updated last week
• tenable / EscalateGPT
  An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.
  ☆117Updated this week
• kmcquade / OWASP-YouTube-2021
  Deliberately vulnerable AWS resources for security assessment demos
  ☆32Updated 3 years ago
• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆55Updated 2 months ago
• adanalvarez / HoneyTrail
  Independently deploy customized honeyservices in AWS to trigger alerts on unauthorized access. It utilizes a dedicated CloudTrail for pre…
  ☆51Updated last year
• cado-security / cloudgrep
  cloudgrep is grep for cloud storage
  ☆326Updated 11 months ago
• SummitRoute / imdsv2_wall_of_shame
  List of vendors that do not allow IMDSv2 enforcement
  ☆143Updated last year
• DataDog / attache
  Attaché provides an emulation layer for Cloud Provider IMDS APIs
  ☆60Updated last month
• domain-protect / domain-protect-gcp
  Protect against subdomain takeover
  ☆95Updated 6 months ago