Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/coffeewithayman/awesome-aws-security

A carefully curated list of open source projects aimed at improving your AWS security posture!
https://github.com/coffeewithayman/awesome-aws-security

List: awesome-aws-security

awesome awesome-list aws cloud-security cloudsecurity security

Last synced: 2 months ago
JSON representation

A carefully curated list of open source projects aimed at improving your AWS security posture!

Host: GitHub
URL: https://github.com/coffeewithayman/awesome-aws-security
Owner: coffeewithayman
Created: 2019-01-29T05:52:06.000Z (almost 6 years ago)
Default Branch: master
Last Pushed: 2022-02-22T09:07:56.000Z (almost 3 years ago)
Last Synced: 2024-05-23T07:13:46.700Z (7 months ago)
Topics: awesome, awesome-list, aws, cloud-security, cloudsecurity, security
Homepage:
Size: 24.4 KB
Stars: 28
Watchers: 2
Forks: 5
Open Issues: 2
Metadata Files:
- Readme: README.md
- Contributing: contributing.md

Awesome Lists containing this project

awesome-security-awesome - awesome-aws-security

README

         

# Awesome AWS Security [![Awesome](https://awesome.re/badge.svg)](https://awesome.re)

A carefully curated list of open source projects aimed at improving your AWS security posture!

---

I would love as much help as I can get. [Start contributing!](https://github.com/C8H10N4OO/awesome-aws-security/blob/master/contributing.md)

Follow me on [Twitter](https://twitter.com/coffeewithayman) for more security goodness.

---

## Contents

- [Learn AWS Security](#Learn-AWS-Security)

- [Security Audit and Mapping Tools](#Security-Audit-and-Mapping-Tools)

- [Security Testing Tools](#Security-Testing-Tools)

- [Security Enabling Tools](#Security-Enabling-Tools)

## Learn AWS Security

A collection of tools to help you learn AWS security.

[Cloud Goat](https://github.com/RhinoSecurityLabs/cloudgoat) - Rhino Security Labs' "Vulnerable by Design" AWS infrastructure setup tool

[flAWS](http://flaws.cloud/) - Through a series of levels you'll learn about common mistakes and gotchas when using Amazon Web Services (AWS).

[flAWS2](http://flaws2.cloud/) - Similar to the original flAWS.cloud (also created by Summit Route), this game/tutorial teaches you AWS (Amazon Web Services) security concepts. 

## Security Audit and Mapping Tools

A collection of tools to help you understand more about your AWS environment.

[CloudMapper](https://github.com/duo-labs/cloudmapper) - CloudMapper helps you analyze your Amazon Web Services (AWS) environments. 

[ScoutSuite](https://github.com/nccgroup/ScoutSuite) - Scout Suite is an open source multi-cloud security-auditing tool, which enables security posture assessment of cloud environments.

[Scout2](https://github.com/nccgroup/Scout2) (Archived) - Scout2 was a security tool that lets AWS administrators assess their environment's security posture. Replaced by ScoutSuite above.

[Security Monkey](https://github.com/Netflix/security_monkey) - Security Monkey monitors your AWS and GCP accounts for policy changes and alerts on insecure configurations. 

## Security Testing Tools

A collection of tools to test your AWS environment.

[Pacu](https://github.com/RhinoSecurityLabs/pacu) - Pacu is an open source AWS exploitation framework, designed for offensive security testing against cloud environments. 

[Chaos Monkey](https://github.com/netflix/chaosmonkey) - Chaos Monkey randomly terminates virtual machine instances and containers that run inside of your production environment.

## Security Enabling Tools

A collection of tools to help you enforce security on your AWS accounts.

[Vault](https://github.com/hashicorp/vault) - Vault is a tool for securely accessing secrets.

[AWS Vault](https://github.com/99designs/aws-vault) - Securely store and access credentials for AWS.

[Cloud Custodian](https://github.com/cloud-custodian/cloud-custodian) - Cloud Custodian is a rules engine for managing public cloud accounts and resources.

[Stream Alert](https://github.com/airbnb/streamalert)- StreamAlert is a serverless, real-time data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using data sources and alerting logic you define.

[netsec](https://github.com/segmentio/netsec) - Home of code related to security of network systems.

[aws-okta](https://github.com/segmentio/aws-okta) - allows you to authenticate with AWS using your Okta credentials

[S3 VirusScan](https://github.com/widdix/aws-s3-virusscan) - Antivirus for S3 buckets. You can connect as many buckets as you like by using S3 Event Notifications

[Manage AWS EC2 SSH access with IAM](https://github.com/widdix/aws-ec2-ssh) - Use your IAM user's public SSH key to get access via SSH to an EC2 instance running (see note)

## License

[![CC0](http://mirrors.creativecommons.org/presskit/buttons/88x31/svg/cc-zero.svg)](https://creativecommons.org/publicdomain/zero/1.0/)