primeharbor / sensitive_iam_actions
Crowdsourced list of sensitive IAM Actions
☆142Updated 4 months ago
Alternatives and similar repositories for sensitive_iam_actions:
Users that are interested in sensitive_iam_actions are comparing it to the libraries listed below
- Runs IAM policy linting and security checks against either a single AWS account or a set of member accounts of an AWS Organization.☆138Updated last week
- Example policies demonstrating how to implement a data perimeter on AWS.☆150Updated this week
- A collection of documented and undocumented AWS API models☆32Updated 4 months ago
- Uses the AWS Cloud Control API to list resources that are present in a given AWS account and region(s).☆135Updated 2 months ago
- SCP management tool☆131Updated last year
- AWS SSO Reporter☆54Updated last year
- Analyzes CloudTrail data of a given AWS account and generates a summary of recently active IAM principals, API calls they made, as well a…☆158Updated last week
- ☆112Updated 2 months ago
- Collection of example Service Control Policies (SCPs) that are useful for sandbox and training AWS accounts.☆147Updated 3 months ago
- Safer AWS SCP deployments via real-time monitoring☆50Updated last year
- Kickstart and manage your AWS Organization via Terraform☆85Updated this week
- ☆86Updated last year
- Example AWS Service control policies to get started or mature your usage of AWS SCPs.☆235Updated 2 weeks ago
- A cloud security tool to search and clean up unused AWS access keys, written in Go.☆50Updated 2 years ago
- An AWS IAM policy statement parser and query tool.☆173Updated last year
- Assisted Log Enabler for AWS - Find AWS resources that are not logging, and turn them on.☆253Updated this week
- AWS honey token manager☆87Updated 7 months ago
- Access Undenied parses AWS AccessDenied CloudTrail events, explains the reasons for them, and offers actionable remediation steps. Open-s…☆262Updated 2 years ago
- A crowdsourced AWS IAM permissions reference.☆91Updated last month
- Is your AWS perimeter secure? Use Powerpipe and Steampipe to check your AWS accounts for public resources, resources shared with untrust…☆111Updated 4 months ago
- Publicly-listed AWS account IDs for easy lookup. Great for cleaning up false positives from unknown Account IDs in Cloudtrail☆38Updated 9 months ago
- The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…☆40Updated 2 years ago
- List of known AWS accounts☆188Updated this week
- AWS VPC Subnets Watcher☆76Updated last year
- This solution supports a bidirectional integration between Security Hub and JIRA. Issues can be either created automatically or manually …☆38Updated 7 months ago
- Generates runbooks for GuardDuty findings☆35Updated 8 months ago
- ☆130Updated 2 weeks ago
- This solutions facilitates rapid deployment of Prowler, full AWS Organization analysis, and finding processing as part of a security post…☆55Updated 3 months ago
- ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach☆151Updated last year
- Expand IAM Actions with Wildcards☆29Updated 2 weeks ago