Alternatives and similar repositories for threatmodel-for-aws-s3

Users that are interested in threatmodel-for-aws-s3 are comparing it to the libraries listed below

• zmallen / cloudtrail2sightings
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆80Updated 2 years ago
• RhinoSecurityLabs / IAMActionHunter
  An AWS IAM policy statement parser and query tool.
  ☆189Updated 2 weeks ago
• orcasecurity / orca-toolbox
  ☆117Updated last month
• PaloAltoNetworks / IAM-Deescalate
  IAM-Deescalate helps mitigate privilege escalation risk in AWS identity and access management (IAM)
  ☆98Updated 2 years ago
• salesforce / metabadger
  Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
  ☆143Updated 2 months ago
• SummitRoute / aws_exposable_resources
  Resource types that can be publicly exposed on AWS
  ☆327Updated 3 years ago
• SecurityRunners / CloudCommotion
  Cloud Commotion intends to cause chaos to simulate security incidents
  ☆143Updated last year
• aquia-inc / aws-guardduty-runbook-generator
  Generates runbooks for GuardDuty findings
  ☆36Updated last year
• matthewdfuller / aws-guides
  AWS docs, guides, and other tools
  ☆76Updated 2 years ago
• openraven / magpie
  A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …
  ☆189Updated 10 months ago
• brianlam38 / AWS-Certified-Security-Specialty
  AWS Certified Security Specialty (2020) course notes
  ☆121Updated 4 years ago
• twilio-labs / socless
  The SOCless automation framework
  ☆140Updated 5 months ago
• primeharbor / sensitive_iam_actions
  Crowdsourced list of sensitive IAM Actions
  ☆151Updated 8 months ago
• Frichetten / aws-api-models
  A collection of documented and undocumented AWS API models
  ☆36Updated 7 months ago
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆76Updated 10 months ago
• primeharbor / breaches.cloud
  https://breaches.cloud
  ☆41Updated 8 months ago
• 9rnt / poro
  Scan publicly accessible assets on your AWS cloud environment
  ☆138Updated 2 weeks ago
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆77Updated 4 months ago
• aws-samples / aws-incident-response-playbooks-workshop
  ☆95Updated last year
• tenable / KaiMonkey
  KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.
  ☆101Updated last year
• awslabs / aws-security-analytics-bootstrap
  AWS Security Analytics Bootstrap enables customers to perform security investigations on AWS service logs by providing an Amazon Athena a…
  ☆250Updated this week
• adanalvarez / TrailDiscover
  An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…
  ☆163Updated last month
• righteousgambit / quiet-riot
  Unauthenticated enumeration of AWS, Azure, and GCP Principals
  ☆235Updated 7 months ago
• ReversecLabs / IAMSpy
  ☆218Updated 3 weeks ago
• CrowdStrike / Cloud-AWS
  A collection of projects supporting AWS Integration
  ☆156Updated last month
• amrandazz / attack-guardduty-navigator
  A MITRE ATT&CK Navigator export for AWS GuardDuty Findings
  ☆137Updated 3 years ago
• Permiso-io-tools / CloudConsoleCartographer
  Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. Cl…
  ☆168Updated last year
• easttimor / aws-incident-response
  ☆374Updated last year
• adanalvarez / TrailAlerts
  TrailAlerts is a AWS-native, serverless cloud-detection tool that lets you define simple rules as code and get rich alerts about events i…
  ☆44Updated 2 months ago
• SummitRoute / imdsv2_wall_of_shame
  List of vendors that do not allow IMDSv2 enforcement
  ☆143Updated last year