infsy's Stars
FogSecurity/yes3-scanner
YES3 Scanner: S3 Security Scanner for Access and Ransomware Protection
turbot/tailpipe
select * from logs; Tailpipe is an open source SIEM for instant log insights, powered by DuckDB. Analyze millions of events in seconds, right from your terminal.
aws-samples/aws2tf
aws2tf - automates the importing of existing AWS resources into Terraform and outputs the Terraform HCL code.
Funkmyster/awesome-cloud-security
A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.
onemorepereira/aws-sso-reporter
AWS SSO Reporter
benkehoe/aws-sso-util
Smooth out the rough edges of AWS SSO (temporarily, until AWS makes it better).
amalmurali47/onaws
Fetch the details of assets hosted on AWS.
ahmetb/kubernetes-network-policy-recipes
Example recipes for Kubernetes Network Policies that you can just copy paste
OWASP/www-project-pytm
OWASP Foundation Web Respository
iann0036/former2
Generate CloudFormation / Terraform / Troposphere templates from your existing AWS resources.
aquasecurity/chain-bench
An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.
cremich/cdk-bill-bot
The serverless cost optimization bot
someengineering/fixinventory
Fix Inventory helps you identify and remove the most critical risks in AWS, GCP, Azure and Kubernetes.
DataDog/stratus-red-team
:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud
awslabs/aws-cloudsaga
AWS CloudSaga - Simulate security events in AWS
kyverno/kyverno
Cloud Native Policy Management
OElesin/querypal
Web UI for Amazon Athena
prowler-cloud/prowler
Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more.
cncf/financial-user-group
💰💸☁️ For those interested in running Kubernetes in highly regulated environments, particularly financial services
zappa/Zappa
Serverless Python
amazon-archives/aws-security-benchmark
Open source demos, concept and guidance related to the AWS CIS Foundation framework.
sebastian-mora/aws_org_explorer
Create a Neo4J graph of users and roles trust policies within an AWS Organization.
bridgecrewio/checkov
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
NickTheSecurityDude/guardduty_to_slack-cdk-2.0
udondan/iam-floyd
AWS IAM policy statement generator with fluent interface
iacsecurity/tool-compare
smallstep/certificates
🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
OpenBAS-Platform/openbas
Open Breach and Attack Simulation & Security Validation Platform
Noovolari/leapp
Leapp is the DevTool to access your cloud
jonrau1/ElectricEye
ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks