twilio-labs / gordon
Gordon is status check Github app to enforce and validate about.yaml file specifications in a repository during pull requests to drive code ownership at scale within an organization
☆20Updated 2 weeks ago
Alternatives and similar repositories for gordon:
Users that are interested in gordon are comparing it to the libraries listed below
- PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…☆59Updated 3 years ago
- Compares and analyzes GCP IAM roles.☆77Updated 8 months ago
- Reapsaw is a continuous security devsecops tool, which helps in enabling security into CI/CD Pipeline. It supports coverage for multiple …☆41Updated 4 years ago
- GCP CSPM using Google Sheets☆34Updated 8 months ago
- CloudSplaining on AWS Managed Policies☆41Updated this week
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Updated 3 years ago
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆106Updated 6 years ago
- 🖇️ STRIDE vs. ASVS equivalence table☆75Updated 5 months ago
- Updated incident response generator for training classes☆43Updated 3 years ago
- ☆14Updated 2 years ago
- OWASP Threat Dragon with Gitlab Integration☆25Updated 7 years ago
- ☆28Updated 4 years ago
- ☆63Updated 2 years ago
- Clean accounts over permissions in GCP infra at scale☆71Updated last year
- ☆27Updated 3 months ago
- Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).☆141Updated 11 months ago
- A Golang program to rotate AWS & GCP account keys☆65Updated this week
- ☆82Updated 5 years ago
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆60Updated last year
- ☆36Updated 3 years ago
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.☆64Updated 5 years ago
- Cloudformation Template and Lambda to detect if Instance Profile credentials are being used outside your AWS Account.☆28Updated 5 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆76Updated 2 years ago
- A tool for testing continuous integration (CI) or continuous delivery (CD) system security☆23Updated 11 years ago
- A security tool designed to help review merged code changes to open source maintained repositories via LLM assisted review to safeguard a…☆30Updated 4 months ago
- AWS Metadata Proxy for protection against SSRF☆67Updated 4 years ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- Deliberately vulnerable AWS resources for security assessment demos☆31Updated 2 years ago
- Simple DLP monitor for AWS S3 is a tool built on top of CloudWatch events and Lambda functions to alert you when data is transferred to S…☆17Updated 4 years ago
- Assess certain AWS network configurations☆11Updated 6 years ago