sriddell / ecr-cve-monitor
☆18Updated last year
Related projects ⓘ
Alternatives and complementary repositories for ecr-cve-monitor
- Example of how to run the Clair image scanner on AWS ECS Fargate☆27Updated 6 years ago
- Audit IAM roles and users using Access Advisor data using Python/boto3 SDK and automatically create IAM permissions boundaries to limit a…☆37Updated 4 years ago
- Validate all your Customer IAM Policies against AWS Access Analyzer - Policy Validation☆43Updated 3 years ago
- Cloudformation Template and Lambda to detect if Instance Profile credentials are being used outside your AWS Account.☆28Updated 5 years ago
- PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…☆58Updated 2 years ago
- (WIP) A terraform / kitchen-terraform hardening baseline for the cis-aws-foundations-baseline☆24Updated 2 years ago
- bash functions to help run aws-cli commands across roles in multiple accounts with MFA☆68Updated 4 years ago
- A collection of useful queries that can be used to verify compliance/security across your AWS assets☆31Updated 5 years ago
- This CloudWatch Events rule Lambda function evaluates AWS API calls that change Amazon EC2 security group ingress rules. The function fla…☆25Updated 5 years ago
- ☆60Updated 3 weeks ago
- SSH-Restricted deploys an SSH compliance rule (AWS Config) with auto-remediation via AWS Lambda if SSH access is public.☆30Updated 3 years ago
- Example container image re-scan with Amazon ECR☆48Updated 3 years ago
- Scripts to quickly fix security and compliance issues☆25Updated last year
- A curated list of things relating to CapitalOne's Cloud-custodian project☆88Updated 4 years ago
- Manheim's Cloud Custodian (c7n) wrapper package, policy generator, runner, and supporting tools.☆45Updated 5 months ago
- Useful scripts for maintaining multiple AWS Accounts☆43Updated 7 months ago
- Demonstrates sending AWS findings to your Slack Channel☆56Updated last year
- Public tables and other research that can accept PRs. Please visit the web link.☆44Updated 5 years ago
- CloudSplaining on AWS Managed Policies☆41Updated this week
- Terraform module to provision Service Control Policies (SCP) for AWS Organizations, Organizational Units, and AWS accounts☆50Updated last month
- Example code for setting up CIS Benchmarks using EventBridge☆19Updated 2 years ago
- Lambda job in Python to automatically patch EC2 instances when an inspector assessment generates a CVE finding☆58Updated 6 years ago
- Some of my personal rules for CapitalOne's Cloud Custodian project☆43Updated 3 years ago
- Create a Golden AMI Pipeline integrated with a Qualys Scanner for vulnerability assessments☆18Updated 5 years ago
- InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark☆77Updated 5 months ago
- An example of using Sentinel policies in VCS in Terraform Enterprise☆26Updated last year
- ☆79Updated 3 years ago
- Automate the AWS GuardDuty account invitation lifecycle for all of your organizations AWS accounts in all regions as well as aggregate an…☆66Updated last year
- Cloud multi-account metadata management tool.☆87Updated 4 years ago