https://github.com/krishcyber2005/aws-security-audit-toolkit
Python tool that audits AWS IAM, network exposure, and logging posture; outputs CSV/JSON security findings.
https://github.com/krishcyber2005/aws-security-audit-toolkit
automation aws boto3 cloud-security cybersecurity devsecops iam python security-audit
Last synced: 2 months ago
JSON representation
Python tool that audits AWS IAM, network exposure, and logging posture; outputs CSV/JSON security findings.
- Host: GitHub
- URL: https://github.com/krishcyber2005/aws-security-audit-toolkit
- Owner: Krishcyber2005
- License: mit
- Created: 2025-12-21T20:06:04.000Z (6 months ago)
- Default Branch: main
- Last Pushed: 2025-12-21T20:09:36.000Z (6 months ago)
- Last Synced: 2025-12-23T08:44:11.316Z (6 months ago)
- Topics: automation, aws, boto3, cloud-security, cybersecurity, devsecops, iam, python, security-audit
- Homepage:
- Size: 9.77 KB
- Stars: 0
- Watchers: 0
- Forks: 0
- Open Issues: 9
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# AWS Security Audit Toolkit (Python + boto3)
A lightweight cloud security auditing tool that performs **defensive security checks** in AWS and generates CSV/JSON reports.
## What it checks (v1)
- IAM MFA Audit — identifies IAM users without MFA enabled
- (Planned) Security Group exposure audit — detects risky inbound rules (0.0.0.0/0)
- (Planned) CloudTrail & VPC Flow Logs posture checks
## Why this project
This project demonstrates:
- Cloud security fundamentals (IAM, networking, logging)
- Python automation using boto3
- Secure-by-design, read-only auditing (no destructive actions)
## Outputs
All findings are exported to:
- `outputs/*.json`
- `outputs/*.csv`
## Tech Stack
- Python
- AWS SDK for Python (boto3)
- rich (terminal UI)
- pandas (report formatting)
## How to run (local)
```bash
pip install -r requirements.txt
python main.py