#
aws-security
Here are 83 public repositories matching this topic...
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
-
Updated
Feb 17, 2021 - Python
williepaul
commented
Jan 15, 2021
- terrascan version: 1.2
- Operating System: all
Description
When scanning a repo, if the severity field is not all caps (HIGH|MEDIUM|LOW), when violations are output, the color of the severity field does not show up. The compare should be case-insensitive, OR we can normalize the severity field.
What I Did
terrascan scan -d [dir]
kmcquade
commented
May 18, 2020
This would be really useful for users who are getting the hang of this.
cloudquery transforms your cloud infrastructure into SQL or Graph database for easy monitoring, governance and security.
aws
security
cis
sql
monitor
azure
gcp
cloud-computing
compliance
cloudtrail
aws-security
cis-benchmark
well-architected
gcp-security
cspm
-
Updated
Feb 13, 2021 - Go
marshmallowrobot
commented
Nov 10, 2020
Summary
Dependabot has identified several security vulnerabilities in the 3rd party libraries Pacbot relies on. In most cases, these vulnerabilities can be resolved by upgrading the library to the most current version.
Maintainers, if you're internal to T-Mobile, you should have been seeing these security alerts coming in over the last several weeks. *Please respond to these in a timely ma
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
-
Updated
Feb 18, 2021 - JavaScript
Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.
security
security-audit
azure
gcp
aws-security
security-tools
cloud-security
azure-security
aws-audit
gcp-audit-report
azure-audit
-
Updated
Feb 8, 2021 - Shell
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
-
Updated
Jun 27, 2020 - CSS
A graph-based tool for visualizing effective access and resource relationships in AWS environments.
-
Updated
Feb 4, 2021 - Python
TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
-
Updated
Feb 12, 2021 - HCL
A collection of the latest AWS Security workshops
students
aws
security
identity
lambda
workshop
detect
inspector
aws-iam
amazon-cognito
aws-security
cloudwatch-events
protect
respond
threat-detection
aws-security-hub
amazon-guardduty
-
Updated
Jan 13, 2021 - Jupyter Notebook
Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)
-
Updated
Jun 1, 2020 - Python
Simplified secrets management solution
docker
aws
vault
password-manager
secret
secrets
password-vault
hashicorp
vault-ui
secret-sharing
hashicorp-vault
aws-security
credential-storage
storage-backend
tmobile
secrets-management
-
Updated
Feb 18, 2021 - Java
Least privilege AWS IAM Terraformer
construction
aws
screenshots
terraform
iam
humans
aws-iam
aws-security
aws-security-automation
bridgecrew
privileges-model
-
Updated
Feb 10, 2021 - Python
IgnacioRV
commented
Feb 7, 2020
Description
Currently add_failure takes the values required to create a failure, creates it then adds it to the Result object's failed_rules
On the other hand add_warning takes a Failure object directly.
Proposed solution
The methods should be updated so that they both have the same behavior (or maybe even just add an add_finding method which takes a type that can be either Failure o
Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.
aws
security-audit
automation
monitoring
terraform
audit
security-hardening
aws-security
risk-management
monitoring-tool
security-tools
soar
security-engineering
cloud-security
cloud-auditing
security-monitoring
well-architected
cloud-compliance-reporting
security-hub
continuous-compliance
-
Updated
Jan 9, 2021 - Python
Open source application to instantly remediate common security issues through the use of AWS Config
aws
security
lambda
cloud
serverless
serverless-framework
aws-security
remediation
security-tools
aws-compliance
-
Updated
Sep 3, 2020 - Python
FestIn - S3 Bucket Weakness Discovery
-
Updated
Dec 4, 2020 - Python
Curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.
aws
security
elasticsearch
nist
awesome
cloud
logging
waf
awesome-list
information-security
aws-security
dlp
iso27001
ccm
nist800-53
cloud-security
data-loss-prevention
security-standards
iso27017
iso-27017
-
Updated
Jun 6, 2017
A step-by-step walkthrough of CloudGoat 2.0 scenarios.
-
Updated
Apr 28, 2020
Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
-
Updated
Jan 6, 2021
A command line security audit tool for Amazon Web Services
go
golang
aws
security
security-audit
cloud
ec2
command-line
tool
s3
amazon-web-services
aws-security
cloud-security-audit
-
Updated
Mar 4, 2019 - Go
Building Operational Visibility Into (n) Environments
aws
security
security-audit
serverless
aws-security
security-automation
security-tools
security-compliance
-
Updated
May 31, 2018 - JavaScript
InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark v1.1.0
-
Updated
Jan 29, 2021 - Ruby
The original AWS security enforcer™
-
Updated
Mar 6, 2019 - Python
Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.
aws
digitalocean
serverless
azure
api-gateway
dynamodb
lambda-functions
gcp
oracle
cybersecurity
serverless-framework
cyber-security
aws-security
cloudsecurity
cloud-security
azure-security
gcp-security
shadowrisk
shadow-risk
-
Updated
Feb 10, 2021 - Python
-
Updated
Apr 24, 2020 - Python
A Lambda-powered Security Orchestration framework for AWS GuardDuty
aws
cloud
aws-lambda
incident-response
cybersecurity
siem
threatintel
aws-security
blueteam
cloudsecurity
soar
aws-guardduty
-
Updated
Dec 15, 2019 - Python
Improve this page
Add a description, image, and links to the aws-security topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the aws-security topic, visit your repo's landing page and select "manage topics."
Describe the bug
CKV_GCP_14 requires a backup configuration, but it does not take into consideration read replicas.
A read replica cannot have backup enabled in GCP.
To Reproduce
Steps to reproduce the behavior:
Expected behavior
Read replicas