Alternatives and similar repositories for aws-allowlister

Users that are interested in aws-allowlister are comparing it to the libraries listed below

• tenchi-security / camp

  View on GitHub
  CloudSplaining on AWS Managed Policies
  ☆44Sep 8, 2025Updated 5 months ago
• aquia-inc / scpkit

  View on GitHub
  SCP management tool
  ☆135Oct 23, 2023Updated 2 years ago
• salesforce / metabadger

  View on GitHub
  Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
  ☆143May 1, 2025Updated 9 months ago
• common-fate / iamzero

  View on GitHub
  Identity & Access Management simplified and secure.
  ☆260Mar 6, 2023Updated 2 years ago
• duo-labs / parliament

  View on GitHub
  AWS IAM linting library
  ☆1,109Jan 7, 2026Updated last month
• salesforce / cloudsplaining

  View on GitHub
  Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…
  ☆2,180Feb 8, 2026Updated last week
• salesforce / policy_sentry

  View on GitHub
  IAM Least Privilege Policy Generator
  ☆2,138Feb 8, 2026Updated last week
• primeharbor / sensitive_iam_actions

  View on GitHub
  Crowdsourced list of sensitive IAM Actions
  ☆159Oct 29, 2024Updated last year
• zoph-io / MAMIP

  View on GitHub
  Monitor AWS Managed IAM Policies Changes
  ☆493Updated this week
• duo-labs / cloudtracker

  View on GitHub
  CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.
  ☆907Dec 17, 2021Updated 4 years ago
• flosell / trailscraper

  View on GitHub
  A command-line tool to get valuable information out of AWS CloudTrail
  ☆830Updated this week
• iann0036 / aws-account-controller

  View on GitHub
  Self-service creation and deletion of sandbox-style accounts.
  ☆345Mar 4, 2023Updated 2 years ago
• easttimor / aws-incident-response

  View on GitHub
  ☆374Feb 23, 2024Updated last year
• glassechidna / trackiam

  View on GitHub
  A project to collate IAM actions, AWS APIs and managed policies from various public sources.
  ☆300Dec 1, 2025Updated 2 months ago
• tenable / access-undenied-aws

  View on GitHub
  Access Undenied parses AWS AccessDenied CloudTrail events, explains the reasons for them, and offers actionable remediation steps. Open-s…
  ☆266Jan 26, 2023Updated 3 years ago
• mlevit / aws-auto-remediate

  View on GitHub
  Open source application to instantly remediate common security issues through the use of AWS Config
  ☆219Sep 3, 2020Updated 5 years ago
• nccgroup / PMapper

  View on GitHub
  A tool for quickly evaluating IAM permissions in AWS.
  ☆1,539Aug 2, 2024Updated last year
• awslabs / aws-cloudsaga

  View on GitHub
  AWS CloudSaga - Simulate security events in AWS
  ☆472Updated this week
• iann0036 / iamlive

  View on GitHub
  Generate an IAM policy from AWS, Azure, or Google Cloud (GCP) calls using client-side monitoring (CSM) or embedded proxy
  ☆3,336Nov 13, 2025Updated 3 months ago
• awslabs / aws-security-analytics-bootstrap

  View on GitHub
  AWS Security Analytics Bootstrap enables customers to perform security investigations on AWS service logs by providing an Amazon Athena a…
  ☆270Updated this week
• Cigna / confectionery

  View on GitHub
  A library of rules for Conftest used to detect misconfigurations within Terraform configuration files
  ☆190Sep 20, 2022Updated 3 years ago
• SummitRoute / csp_security_mistakes

  View on GitHub
  This repo has been replaced by https://www.cloudvulndb.org
  ☆727Jun 29, 2022Updated 3 years ago
• turnerlabs / antiope

  View on GitHub
  AWS Inventory and Compliance Framework
  ☆224Jul 12, 2023Updated 2 years ago
• SummitRoute / aws_exposable_resources

  View on GitHub
  Resource types that can be publicly exposed on AWS
  ☆329Feb 23, 2022Updated 3 years ago
• z0ph / aa-policy-validator

  View on GitHub
  Validate all your Customer IAM Policies against AWS Access Analyzer - Policy Validation
  ☆43May 20, 2021Updated 4 years ago
• CloudWanderer-io / PolicyGlass

  View on GitHub
  PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…
  ☆60Jan 9, 2022Updated 4 years ago
• ReversecLabs / IAMSpy

  View on GitHub
  ☆228Jan 29, 2026Updated 2 weeks ago
• duo-labs / cloudtrail-partitioner

  View on GitHub
  ☆157Jul 8, 2023Updated 2 years ago
• aws-solutions / automated-security-response-on-aws

  View on GitHub
  Automated Security Response on AWS is an add-on solution that works with AWS Security Hub to provide a ready-to-deploy architecture and a…
  ☆463Updated this week
• tobilg / aws-lambda-api-call-recorder

  View on GitHub
  A recorder of AWS API calls for Lambda functions
  ☆15Sep 15, 2020Updated 5 years ago
• Netflix / repokid

  View on GitHub
  AWS Least Privilege for Distributed, High-Velocity Deployment
  ☆1,148Nov 24, 2025Updated 2 months ago
• zoph-io / aws-security-survival-kit

  View on GitHub
  Bare minimum AWS Security Alerting and Secure by default Configuration
  ☆511May 15, 2025Updated 9 months ago
• aws-samples / aws-iam-permissions-guardrails

  View on GitHub
  AWS IAM Permissions Guardrails https://aws-samples.github.io/aws-iam-permissions-guardrails/
  ☆126Apr 17, 2023Updated 2 years ago
• jonrau1 / ElectricEye

  View on GitHub
  ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring su…
  ☆1,034Feb 9, 2026Updated last week
• aws-samples / data-perimeter-policy-examples

  View on GitHub
  Example policies demonstrating how to implement a data perimeter on AWS.
  ☆190Jan 29, 2026Updated 2 weeks ago
• ScriptAutomate / aws-cfn-resource-specs

  View on GitHub
  A Completely Tracked and Versioned Collection Store of CloudFormationResource.json Resource Specification Files
  ☆29May 2, 2023Updated 2 years ago
• welldone-cloud / aws-scps-for-sandbox-and-training-accounts

  View on GitHub
  Collection of example Service Control Policies (SCPs) that are useful for sandbox and training AWS accounts.
  ☆161Dec 22, 2025Updated last month
• disruptops / assess_network

  View on GitHub
  Assess certain AWS network configurations
  ☆12Aug 22, 2018Updated 7 years ago
• fwdcloudsec / known_aws_accounts

  View on GitHub
  List of known AWS accounts
  ☆252Feb 6, 2026Updated last week