tradichel / PacketCaptureAWS
Having Fun With Packet Capture on AWS
☆18Updated 4 years ago
Related projects: ⓘ
- Framework for reviewing and responding to events in AWS Flow Logs using Lambda Function☆45Updated 8 months ago
- This command line tool counts the number of resources in different categories across Amazon regions.☆56Updated 4 years ago
- Terraform stack to deploy ELK Threat Hunting on Amazon AWS.☆90Updated 5 years ago
- A python module for orchestrating content acquisitions and analysis via amazon ssm.☆57Updated 10 months ago
- Example detection of compromise credentials in AWS☆118Updated 6 years ago
- Blazing CloudTrail since 2018☆134Updated 5 years ago
- ☆82Updated 4 years ago
- Cloudformation Template and Lambda to detect if Instance Profile credentials are being used outside your AWS Account.☆28Updated 5 years ago
- This script is used to generate some basic detections of the aws security services☆71Updated 2 years ago
- Tools for AWS forensics☆64Updated 8 years ago
- AWS Metadata Proxy for protection against SSRF☆68Updated 4 years ago
- The original AWS security enforcer™☆59Updated 5 years ago
- Automation of VPC Traffic Mirror Sessions in AWS☆34Updated 2 years ago
- Public tables and other research that can accept PRs. Please visit the web link.☆44Updated 5 years ago
- Proof of Concept Zappa Based AWS Persistence and Attack Platform☆37Updated 4 years ago
- Remote Memory Acquisition Tool☆239Updated 3 years ago
- Python module for evaluation of AWS account best practices around incident handling readieness.☆54Updated 4 years ago
- ☆27Updated this week
- SkyWrapper helps to discover suspicious creation forms and uses of temporary tokens in AWS☆104Updated 3 years ago
- Manage GuardDuty At Enterprise Scale☆22Updated 4 years ago
- Collection of AWS helper scripts.☆13Updated 6 years ago
- ☆13Updated 6 years ago
- Proof of concept incident response demo using SSM and AWS Fargate.☆13Updated 4 years ago
- Updated incident response generator for training classes☆41Updated 3 years ago
- Workshop exercise materials for re:Invent 2017 - SID 341: Using AWS CloudTrail Logs for Scalable, Automated Anomaly Detection☆51Updated 5 years ago
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.☆61Updated 5 years ago
- Various AWS Automation Scripts☆141Updated 6 years ago
- AWS risky security change detector based on EDDA.☆82Updated 5 years ago
- Core incident handling plugins for aws_ir cli, incident pony, and more.☆21Updated 6 years ago
- A Lambda-powered Security Orchestration framework for AWS GuardDuty☆51Updated 4 years ago