{"id":13782619,"url":"https://github.com/spacesiren/spacesiren","last_synced_at":"2025-05-11T16:30:32.136Z","repository":{"id":41321855,"uuid":"285489285","full_name":"spacesiren/spacesiren","owner":"spacesiren","description":"A honey token manager and alert system for AWS.","archived":false,"fork":false,"pushed_at":"2021-12-19T18:23:15.000Z","size":3731,"stargazers_count":316,"open_issues_count":5,"forks_count":27,"subscribers_count":9,"default_branch":"master","last_synced_at":"2024-11-17T17:43:30.536Z","etag":null,"topics":["aws","honeypot","lambda","security","terraform"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/spacesiren.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2020-08-06T06:14:02.000Z","updated_at":"2024-11-05T04:01:07.000Z","dependencies_parsed_at":"2022-09-11T09:02:11.948Z","dependency_job_id":null,"html_url":"https://github.com/spacesiren/spacesiren","commit_stats":null,"previous_names":[],"tags_count":6,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/spacesiren%2Fspacesiren","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/spacesiren%2Fspacesiren/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/spacesiren%2Fspacesiren/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/spacesiren%2Fspacesiren/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/spacesiren","download_url":"https://codeload.github.com/spacesiren/spacesiren/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":253595468,"owners_count":21933393,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aws","honeypot","lambda","security","terraform"],"created_at":"2024-08-03T18:01:40.160Z","updated_at":"2025-05-11T16:30:31.676Z","avatar_url":"https://github.com/spacesiren.png","language":"Python","funding_links":[],"categories":["Python","Python (1887)","\u003ca id=\"tag-dev\" href=\"#tag-dev\"\u003eDev\u003c/a\u003e"],"sub_categories":["\u003ca id=\"tag-dev.security\" href=\"#tag-dev.security\"\u003eSecurity\u003c/a\u003e"],"readme":"# SpaceSiren\n\nSpaceSiren is a [honey token](https://en.wikipedia.org/wiki/Honeypot_(computing)) \nmanager and alert system for AWS. With this fully serverless application,\nyou can create and manage honey tokens at scale -- up to 10,000 per SpaceSiren\ninstance -- at close to no cost.\u003csup\u003e1\u003c/sup\u003e\n\n![SpaceSiren mascot](docs/images/logo/spacesiren-banner-medium.png)\n\n## How It Works\n\n* SpaceSiren provides an API to create no-permission AWS IAM users and access keys for those users.\n* You sprinkle the access keys wherever you like, for example in proprietary code or private data stores.\n* If one of those sources gets breached, an attacker is likely to use the stolen key to see what they can do with it.\n* You will receive an alert that someone attempted to use the key.\n\n![Token API screenshot](docs/images/screenshots/token-api.png)\n\n## Alert Outputs\n\n* Email\n* PagerDuty\n* Slack\n* Pushover\n\n\u003e ![Email alert](docs/images/screenshots/alert-email.png)\n\n## Documentation Pages\n\n* [Getting Started](docs/getting-started.md)\n* [Alerts](docs/alerts.md)\n* [API Documentation](docs/api.md)\n* [Terraform Variables](docs/tfvars.md)\n\n## Requirements\n\nAs with any open source project, this one assumes you have the required\nfoundational tools and knowledge, mainly in AWS and Terraform.\n\n### Resources\n\n* Terraform \u003e= 0.13\n* AWS CLI\n* A dedicated AWS account with admin access\n* A registered domain\n\n### Knowledge\n\n* Basic Terraform\n* Basic REST API\n* Basic AWS CLI, S3, and Route 53\n* Basic AWS Organizations and IAM Roles for cross-account access\n* Intermediate DNS (delegating a (sub)domain with NS records)\n\n## Contact\n\nIf you notice a critical security bug (e.g., one that would grant real access to\nan AWS account), please responsibly disclose it via email at\n[contact@spacesiren.io](mailto:contact@spacesiren.io).\n\nFor standard bugs or feature requests, please open a GitHub issue.\n\n\n## Attributions\n\nSpecial thanks to:\n\n* Atlassian for [Project SpaceCrab](https://bitbucket.org/asecurityteam/spacecrab), the\n  inspiration for this project. If you want to read about why I started SpaceSiren,\n  please see my [SpaceCrab critique](docs/spacecrab.md) page.\n* The wonderful and talented\n  [Alia Mancisidor](https://www.instagram.com/figmentpie/) for the artwork.\n* Anyone who volunteered to test this application for me.\n\n---\n\n## Footnotes\n\n1. While SpaceSiren was designed to run as cheaply as possible, even for\n   individuals, it will not be entirely free of operating costs. You will incur\n   nominal costs for DynamoDB, Lambda, API Gateway, Route 53, and perhaps\n   CloudTrail, depending on your configuration. You should expect to spend\n   between $1 and $5 per month to run SpaceSiren. Of course, the project's\n   maintainers are not responsible for any actual costs you incur. Please closely\n   monitor your AWS bill while it is in use. \n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fspacesiren%2Fspacesiren","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fspacesiren%2Fspacesiren","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fspacesiren%2Fspacesiren/lists"}