salesforce / aws-allowlisterLinks
Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frameworks.
☆223Updated 2 years ago
Alternatives and similar repositories for aws-allowlister
Users that are interested in aws-allowlister are comparing it to the libraries listed below
Sorting:
- AWS Organizations Service Control Policies (SCPs) written in HashiCorp Terraform.☆244Updated last year
- Access Undenied parses AWS AccessDenied CloudTrail events, explains the reasons for them, and offers actionable remediation steps. Open-s…☆265Updated 2 years ago
- AWS Inventory and Compliance Framework☆224Updated 2 years ago
- Repository for iamfast questions and issues☆175Updated 9 months ago
- Scripts to quickly fix security and compliance issues☆106Updated 2 years ago
- ☆157Updated 2 years ago
- Collection of semi-useful Service Control Policies and scripts to manage them☆101Updated 11 months ago
- Example policies demonstrating how to implement a data perimeter on AWS.☆190Updated last week
- Resource types that can be publicly exposed on AWS☆329Updated 3 years ago
- List of vendors that do not allow IMDSv2 enforcement☆143Updated last year
- AWS IAM Permissions Guardrails https://aws-samples.github.io/aws-iam-permissions-guardrails/☆126Updated 2 years ago
- A project to collate IAM actions, AWS APIs and managed policies from various public sources.☆299Updated last month
- SCP management tool☆135Updated 2 years ago
- Monitor AWS Managed IAM Policies Changes☆492Updated this week
- Parse and Process AWS IAM Policies, Statements, ARNs, and wildcards.☆447Updated last year
- Collection of example Service Control Policies (SCPs) that are useful for sandbox and training AWS accounts.☆159Updated 3 weeks ago
- Open source application to instantly remediate common security issues through the use of AWS Config☆219Updated 5 years ago
- AWS managed IAM policies☆128Updated 4 years ago
- This script automates the process of running the GuardDuty multi-account workflow across a group of accounts that are in your control☆131Updated last year
- Cloud Custodian policy that logs unused security groups☆143Updated 4 years ago
- No need for IAM users when we have Yubikeys☆158Updated 3 years ago
- Assisted Log Enabler for AWS - Find AWS resources that are not logging, and turn them on.☆268Updated this week
- A crowdsourced AWS IAM permissions reference.☆101Updated 5 months ago
- AWS Identity and Access Management Visualizer and Anomaly Finder☆298Updated last year
- A consolidated series of structured data for cloud identity and access management systems, including datasets for AWS, Azure, and Google …☆297Updated this week
- Cloud Conformity Auto Remediate☆157Updated 3 months ago
- This script automates the process of running the Security Hub multi-account workflow across a group of accounts that are in your control☆280Updated last year
- A small lambda script that will disable access keys older than a given amount of days.☆153Updated 2 years ago
- AWS Security Analytics Bootstrap enables customers to perform security investigations on AWS service logs by providing an Amazon Athena a…☆268Updated this week
- Assume AWS IAM roles from GitHub Actions workflows with no stored secrets☆170Updated 4 years ago