{"id":13462765,"url":"https://github.com/coffeewithayman/awesome-aws-security","last_synced_at":"2025-03-25T06:31:21.244Z","repository":{"id":43712313,"uuid":"168097582","full_name":"coffeewithayman/awesome-aws-security","owner":"coffeewithayman","description":"A carefully curated list of open source projects aimed at improving your AWS security posture!","archived":false,"fork":false,"pushed_at":"2022-02-22T09:07:56.000Z","size":25,"stargazers_count":29,"open_issues_count":2,"forks_count":5,"subscribers_count":2,"default_branch":"master","last_synced_at":"2024-10-29T13:49:26.321Z","etag":null,"topics":["awesome","awesome-list","aws","cloud-security","cloudsecurity","security"],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/coffeewithayman.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"contributing.md","funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2019-01-29T05:52:06.000Z","updated_at":"2024-09-03T19:38:21.000Z","dependencies_parsed_at":"2022-09-18T20:21:28.370Z","dependency_job_id":null,"html_url":"https://github.com/coffeewithayman/awesome-aws-security","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/coffeewithayman%2Fawesome-aws-security","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/coffeewithayman%2Fawesome-aws-security/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/coffeewithayman%2Fawesome-aws-security/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/coffeewithayman%2Fawesome-aws-security/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/coffeewithayman","download_url":"https://codeload.github.com/coffeewithayman/awesome-aws-security/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":244006204,"owners_count":20382439,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["awesome","awesome-list","aws","cloud-security","cloudsecurity","security"],"created_at":"2024-07-31T13:00:29.902Z","updated_at":"2025-03-25T06:31:21.223Z","avatar_url":"https://github.com/coffeewithayman.png","language":null,"funding_links":[],"categories":["Education Best Practices"],"sub_categories":["Secure OSes"],"readme":" \n\n# Awesome AWS Security [![Awesome](https://awesome.re/badge.svg)](https://awesome.re)\n\nA carefully curated list of open source projects aimed at improving your AWS security posture!\n\n---\n\nI would love as much help as I can get. [Start contributing!](https://github.com/C8H10N4OO/awesome-aws-security/blob/master/contributing.md)\n\nFollow me on [Twitter](https://twitter.com/coffeewithayman) for more security goodness.\n\n---\n\n## Contents\n\n- [Learn AWS Security](#Learn-AWS-Security)\n- [Security Audit and Mapping Tools](#Security-Audit-and-Mapping-Tools)\n- [Security Testing Tools](#Security-Testing-Tools)\n- [Security Enabling Tools](#Security-Enabling-Tools)\n\n## Learn AWS Security\n\nA collection of tools to help you learn AWS security.\n\n[Cloud Goat](https://github.com/RhinoSecurityLabs/cloudgoat) - Rhino Security Labs' \"Vulnerable by Design\" AWS infrastructure setup tool\n\n[flAWS](http://flaws.cloud/) - Through a series of levels you'll learn about common mistakes and gotchas when using Amazon Web Services (AWS).\n\n[flAWS2](http://flaws2.cloud/) - Similar to the original flAWS.cloud (also created by Summit Route), this game/tutorial teaches you AWS (Amazon Web Services) security concepts. \n\n## Security Audit and Mapping Tools\n\nA collection of tools to help you understand more about your AWS environment.\n\n[CloudMapper](https://github.com/duo-labs/cloudmapper) - CloudMapper helps you analyze your Amazon Web Services (AWS) environments. \n\n[ScoutSuite](https://github.com/nccgroup/ScoutSuite) - Scout Suite is an open source multi-cloud security-auditing tool, which enables security posture assessment of cloud environments.\n\n[Scout2](https://github.com/nccgroup/Scout2) (Archived) - Scout2 was a security tool that lets AWS administrators assess their environment's security posture. Replaced by ScoutSuite above.\n\n[Security Monkey](https://github.com/Netflix/security_monkey) - Security Monkey monitors your AWS and GCP accounts for policy changes and alerts on insecure configurations. \n\n\n## Security Testing Tools\n\nA collection of tools to test your AWS environment.\n\n[Pacu](https://github.com/RhinoSecurityLabs/pacu) - Pacu is an open source AWS exploitation framework, designed for offensive security testing against cloud environments. \n\n[Chaos Monkey](https://github.com/netflix/chaosmonkey) - Chaos Monkey randomly terminates virtual machine instances and containers that run inside of your production environment.\n\n\n## Security Enabling Tools\n\nA collection of tools to help you enforce security on your AWS accounts.\n\n[Vault](https://github.com/hashicorp/vault) - Vault is a tool for securely accessing secrets.\n\n[AWS Vault](https://github.com/99designs/aws-vault) - Securely store and access credentials for AWS.\n\n[Cloud Custodian](https://github.com/cloud-custodian/cloud-custodian) - Cloud Custodian is a rules engine for managing public cloud accounts and resources.\n\n[Stream Alert](https://github.com/airbnb/streamalert)- StreamAlert is a serverless, real-time data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using data sources and alerting logic you define.\n\n[netsec](https://github.com/segmentio/netsec) - Home of code related to security of network systems.\n\n[aws-okta](https://github.com/segmentio/aws-okta) - allows you to authenticate with AWS using your Okta credentials\n\n[S3 VirusScan](https://github.com/widdix/aws-s3-virusscan) - Antivirus for S3 buckets. You can connect as many buckets as you like by using S3 Event Notifications\n\n[Manage AWS EC2 SSH access with IAM](https://github.com/widdix/aws-ec2-ssh) - Use your IAM user's public SSH key to get access via SSH to an EC2 instance running (see note)\n\n\n\n\n## License\n\n[![CC0](http://mirrors.creativecommons.org/presskit/buttons/88x31/svg/cc-zero.svg)](https://creativecommons.org/publicdomain/zero/1.0/)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcoffeewithayman%2Fawesome-aws-security","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcoffeewithayman%2Fawesome-aws-security","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcoffeewithayman%2Fawesome-aws-security/lists"}