somethingnew2-0 / SimpleCSPM

Related projects ⓘ

Alternatives and complementary repositories for SimpleCSPM

• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆76Updated 5 months ago
• zmallen / cloudtrail2sightings
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆79Updated 2 years ago
• shellcromancer / audit-log-wall-of-shame
  Audit log wall of shame.
  ☆41Updated last month
• darkarnium / perimeterator
  'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.
  ☆62Updated 5 years ago
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆75Updated 2 months ago
• carta / krang
  Knowledge Report Alert & Normalization Generator
  ☆27Updated 8 months ago
• zenzora / awesome-gcpsec
  ☆14Updated 2 years ago
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 2 years ago
• DataDog / workload-security-evaluator
  Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.
  ☆30Updated last month
• chainguard-dev / osqtool
  Automated testing, generation & manipulation of #osquery packs
  ☆70Updated last month
• disruptops / IncidentResponseGenerator
  Updated incident response generator for training classes
  ☆41Updated 3 years ago
• CloudWanderer-io / PolicyGlass
  PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…
  ☆58Updated 2 years ago
• secmerc / materialize-threats
  ☆61Updated last year
• kmcquade / OWASP-YouTube-2021
  Deliberately vulnerable AWS resources for security assessment demos
  ☆31Updated 2 years ago
• google / localtoast
  ☆107Updated last month
• WarnerMedia / aws-guardduty-enterprise
  Manage GuardDuty At Enterprise Scale
  ☆22Updated 4 years ago
• runreveal / sigmalite
  ☆37Updated 2 months ago
• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆71Updated last year
• primeharbor / aws-fast-fixes
  Scripts to quickly fix security and compliance issues
  ☆25Updated 11 months ago
• technologik / terraform_attack_automation
  Automation associated with our talk: Attacking and Defending Infrastructure with Terraform
  ☆16Updated 2 years ago
• Netflix-Skunkworks / cloudtrail-anomaly
  ☆82Updated 4 years ago
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆57Updated last year
• matthewdfuller / aws-guides
  AWS docs, guides, and other tools
  ☆76Updated last year
• Algbra-Labs-OSS / Chronicle
  ☆66Updated 6 months ago
• kpolley / slackurity
  Slack bot which promotes Defense in Depth/Zero Trust security practices
  ☆24Updated last year
• PaloAltoNetworks / IAM-Deescalate
  IAM-Deescalate helps mitigate privilege escalation risk in AWS identity and access management (IAM)
  ☆96Updated 2 years ago
• aquia-inc / aws-guardduty-runbook-generator
  Generates runbooks for GuardDuty findings
  ☆34Updated 4 months ago
• salesforce / metabadger
  Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
  ☆138Updated 8 months ago