A Central Control Plane for AWS Permissions and Access
-
Updated
Jul 7, 2024 - Python
A Central Control Plane for AWS Permissions and Access
ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks
AWS云平台 AccessKey 泄漏利用工具
CdkGoat is Bridgecrew's "Vulnerable by Design" AWS CDK repository. CdkGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
Cloud Security Operations Orchestrator
Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frameworks.
旨在以攻促防,针对Docker TCP socket的开源利用工具
Security tool to quickly audit Public Box files and folders.
CYBRIA - Pioneering Federated Learning for Privacy-Aware Cybersecurity with Brilliance
Cloud security monitoring tool and framework
cloudgrep is grep for cloud storage
Adaptive AWS Zero Trust Policy made easy: Auto-generate least-privilege policies based on user activity in real time! Accelerate the adoption of smart access control
Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of particular use when investigating a security incident.
The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the CISO to facilitate the creation and enablement of secure EKS Clusters.
AWSATT&CK adds MITRE ATT&CK context and additional logging capabilities to Rhino Security Labs's open-source AWS exploitation framework, Pacu.
Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
AWS Control Tower and Lacework allow seamless multi-account cloud security. With Lacework and AWS Control Tower, enrolling a new AWS account now means security best practices and monitoring are automatically applied consistently across your organization. Account administrators can automatically add Lacework's security auditing and monitoring to …
An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and security implications
#100DaysOfCloud #100DaysOfCyberSecurity snippets starting from 28 SEPT 2022
Add a description, image, and links to the cloud-security topic page so that developers can more easily learn about it.
To associate your repository with the cloud-security topic, visit your repo's landing page and select "manage topics."