aws-security

Star

Here are 193 public repositories matching this topic...

Language:All

Filter by language

All193 Python60 HCL53 Go15 JavaScript14 Shell9 Java4 TypeScript3 Ruby2 Rust2 C#1

Sort:Most stars

Sort options

Most stars Fewest stars Most forks Fewest forks Recently updated Least recently updated

bridgecrewio /checkov

Star7.4k

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

kubernetes aws devops cloudformation azure terraform static-analysis gcp infrastructure-as-code scans compliance hacktoberfest aws-security

UpdatedMar 18, 2025
Python

tenable /terrascan

Star4.9k

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

kubernetes infrastructure aws security devops terraform architecture iac infrastructure-as-code scans aws-security security-tools cloudsecurity devsecops cloud-security sast azure-security gcp-security terrascan security-violations

UpdatedDec 10, 2024
Go

RhinoSecurityLabs /pacu

Star4.6k

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

python aws security penetration-testing aws-security

UpdatedMar 18, 2025
Python

jassics /security-study-plan

Star4.6k

Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...

cybersecurity infosec application-security pentesting study-guide appsec aws-security study-plan security-testing api-security azure-security appsec-tutorials gcp-security devsecops-university cybersecurity-education study-planner

UpdatedJan 29, 2025

Netflix /security_monkey

Star4.4k

Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.

python aws security aws-s3 aws-sqs aws-ec2 aws-iam boto3 botocore aws-vpc boto aws-security aws-policy-tracking

UpdatedFeb 11, 2021
Python

4ndersonLin /awesome-cloud-security

Star2.1k

🛡️ Awesome Cloud Security Resources ⚔️

aws security azure gcp cybersecurity cloud-computing aws-security cloud-security azure-security gcp-security

UpdatedNov 8, 2024

salesforce /policy_sentry

Star2.1k

IAM Least Privilege Policy Generator

aws security cloud iam salesforce hacktoberfest aws-security iam-policy cloudsecurity

UpdatedMar 1, 2025
Python

salesforce /cloudsplaining

Star2.1k

Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.

aws security cloud iam salesforce aws-iam hacktoberfest aws-security cloud-security

UpdatedMar 2, 2025
JavaScript

DataDog /stratus-red-team

Star2k

☁️ ⚡ Granular, Actionable Adversary Emulation for the Cloud

aws security aws-security cloud-security azure-security mitre-attack adversary-emulation threat-detection purple-team gcp-security kubernetes-security detection-engineering cloud-native-security

UpdatedMar 18, 2025
Go

matanolabs /matano

Star1.5k

Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS

rust aws security cloud big-data serverless alerting dfir secops cybersecurity cloud-native threat-hunting siem log-management aws-security security-tools cloud-security log-analytics apache-iceberg detection-engineering

UpdatedJan 8, 2025
Rust

jassics /awesome-aws-security

Star1.3k

Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security

aws security awesome awesome-list aws-security security-tools awesome-lists cloud-security aws-auditing aws-security-automation aws-security-resources

UpdatedFeb 13, 2025

tmobile /pacbot

Star1.3k

PacBot (Policy as Code Bot)

angularjs java aws security cloud spring-boot cloud-native aws-security security-automation cloud-security cloud-auditing continous-compliance policy-as-code cloud-compliance-reporting

UpdatedDec 8, 2022
Java

TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.

terraform aws-security goat devsecops cloud-security azure-security gcp-security

UpdatedSep 13, 2024
HCL

SecurityFTW /cs-suite

Star1.2k

Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.

security security-audit azure gcp aws-security security-tools cloud-security azure-security aws-audit gcp-audit-report azure-audit

UpdatedDec 8, 2022
Shell

aws-samples /aws-security-reference-architecture-examples

Star1k

Example solutions demonstrating how to implement patterns within the AWS Security Reference Architecture guide using CloudFormation (including Customizations for AWS Control Tower) and Terraform.

aws aws-cloudformation aws-security aws-security-automation aws-control-tower

UpdatedMar 14, 2025
Python

jonrau1 /ElectricEye

Star984

ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks