Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

awesome-aws-security

A carefully curated list of open source projects aimed at improving your AWS security posture!
https://github.com/coffeewithayman/awesome-aws-security

Last synced: 3 days ago
JSON representation

  • Learn AWS Security

    • flAWS - Through a series of levels you'll learn about common mistakes and gotchas when using Amazon Web Services (AWS).
    • flAWS2 - Similar to the original flAWS.cloud (also created by Summit Route), this game/tutorial teaches you AWS (Amazon Web Services) security concepts.
    • Cloud Goat - Rhino Security Labs' "Vulnerable by Design" AWS infrastructure setup tool

  • Security Audit and Mapping Tools

    • CloudMapper - CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
    • ScoutSuite - Scout Suite is an open source multi-cloud security-auditing tool, which enables security posture assessment of cloud environments.
    • Scout2 - Scout2 was a security tool that lets AWS administrators assess their environment's security posture. Replaced by ScoutSuite above.
    • Security Monkey - Security Monkey monitors your AWS and GCP accounts for policy changes and alerts on insecure configurations.

  • Security Testing Tools

    • Pacu - Pacu is an open source AWS exploitation framework, designed for offensive security testing against cloud environments.
    • Chaos Monkey - Chaos Monkey randomly terminates virtual machine instances and containers that run inside of your production environment.

  • Security Enabling Tools

    • Vault - Vault is a tool for securely accessing secrets.
    • AWS Vault - Securely store and access credentials for AWS.
    • Cloud Custodian - Cloud Custodian is a rules engine for managing public cloud accounts and resources.
    • Stream Alert - StreamAlert is a serverless, real-time data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using data sources and alerting logic you define.
    • netsec - Home of code related to security of network systems.
    • aws-okta - allows you to authenticate with AWS using your Okta credentials
    • S3 VirusScan - Antivirus for S3 buckets. You can connect as many buckets as you like by using S3 Event Notifications
    • Manage AWS EC2 SSH access with IAM - Use your IAM user's public SSH key to get access via SSH to an EC2 instance running (see note)
Programming Languages
Python 7 Go 5 Java 2 JavaScript 1
Categories
Security Enabling Tools 8 License 5 Security Audit and Mapping Tools 4 Learn AWS Security 3 Security Testing Tools 2
Sub Categories
Keywords
aws 10 security 6 python 2 aws-security 2 aws-s3 2 lambda 2 aws-ec2 2 gcp 2 serverless 2 cloud 2 azure 2 amazon-web-services 2 auditing 1 aws-iam 1 aws-policy-tracking 1 diagram 1 aws-sqs 1 aws-vpc 1 boto 1 boto3 1 botocore 1 cytoscape 1 penetration-testing 1 ssh 1 virus-scanning 1 paused 1 terraform 1 rules 1 kinesis 1 analysis 1 rules-engine 1 management 1 compliance 1 cloud-computing 1 temporary-credentials 1 mfa 1 keychain 1 iam 1 credentials 1 cli 1 aws-vault 1 vault 1 secrets 1 go 1