https://github.com/jblukach/botoplus
Python Library for Jupyter Notebooks that provides Security Operations the Threat Detection and Response capabilities needed during an Amazon Web Services (AWS) investigation.
https://github.com/jblukach/botoplus
aws boto jupyter notebooks pypi python sso
Last synced: 7 months ago
JSON representation
Python Library for Jupyter Notebooks that provides Security Operations the Threat Detection and Response capabilities needed during an Amazon Web Services (AWS) investigation.
- Host: GitHub
- URL: https://github.com/jblukach/botoplus
- Owner: jblukach
- License: apache-2.0
- Created: 2022-10-19T10:26:42.000Z (almost 3 years ago)
- Default Branch: main
- Last Pushed: 2025-02-10T01:27:33.000Z (8 months ago)
- Last Synced: 2025-02-10T02:29:08.457Z (8 months ago)
- Topics: aws, boto, jupyter, notebooks, pypi, python, sso
- Language: Jupyter Notebook
- Homepage: https://pypi.org/project/botoplus
- Size: 93.8 KB
- Stars: 2
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# botoplus
## Getting Started
| Notebook | Description |
| -------- | ----------- |
| [start](start.ipynb) | IAM Identity Center (SSO) Login & Logout |
## Threat Detection
### Cloud Development Kit (CDK)
| Notebook | Description |
| -------- | ----------- |
| [identify-cdk-bootstraps](notebooks/cdk/identify-cdk-bootstraps.ipynb) | Identify CDK Bootstraps with Versions for All Accounts & Regions |
### Elastic Container Registry (ECR)
| Notebook | Description |
| -------- | ----------- |
| [scan-container-images](notebooks/ecr/scan-container-images.ipynb) | Configure, Scan & Report Container Image Vulnerabilities |
### Organizations
| Notebook | Description |
| -------- | ----------- |
| [identify-privileged-accounts](notebooks/organizations/identify-privileged-accounts.ipynb) | List of Delegated Administration Accounts & Services |
### Virtual Private Cloud (VPC)
| Notebook | Description |
| -------- | ----------- |
| [identify-default-vpcs](notebooks/vpc/identify-default-vpcs.ipynb) | Identify Default VPCs Across All Regions |
## Threat Response
### Elastic Compute Cloud (EC2)
| Notebook | Description |
| -------- | ----------- |
| [disable-serial-console-access](notebooks/ec2/disable-serial-console-access.ipynb) | Disable Serial Console Access |
| [enable-image-block-public-access](notebooks/ec2/enable-image-block-public-access.ipynb) | Enable Image Block Public Access |
| [enable-snapshot-block-public-access](notebooks/ec2/enable-snapshot-block-public-access.ipynb) | Enable Snapshot Block Public Access |
### Cloud Watch Logs (CWL)
| Notebook | Description |
| -------- | ----------- |
| [cloud-watch-log-management](notebooks/cwlogs/cloud-watch-log-management.ipynb) | Cloud Watch Log Management |
## Threat Utilities
### Analysis
| Notebook | Description |
| -------- | ----------- |
| [deflation](notebooks/analysis/deflation.ipynb) | Deflation of Data Structures |
### Control Tower
| Notebook | Description |
| -------- | ----------- |
| [deploy-external-access-analyzers](notebooks/iam/deploy-external-access-analyzers.ipynb) | External IAM Access Analyzers for Accounts & Organization |
| [periodic-daily-config-recordings](notebooks/controltower/periodic-daily-config-recordings.ipynb) | Setup or Stop Config Periodic Daily Recordings |
### Grafana
| Notebook | Description |
| -------- | ----------- |
| [configure-lambda-error-alerts](notebooks/grafana/configure-lambda-error-alerts.ipynb) | Configure Lambda Error Alerts |