Auditing tools
tate86 opened this issue · 3 comments
Hey, please check and, if you consider them acceptable, add them.
SQL-like syntax tool Steampipe.io + CIS and CVE audits
https://steampipe.io/docs
CloudQuery: SQL-like syntax tool
https://cloudquery.io/
SG rules dumper
https://gist.github.com/amgill
Another SG dumper
https://github.com/percolate/ec2-security-groups-dumper
SG details (bash)
https://gist.github.com/richadams/384020d6e4e6d4f400d7
SG mapping (AWS inspector like) with PowerShell
https://aseemkblog.wordpress.com/2018/01/08/aws-get-security-group-mapping/
Routing Tables details:
https://raw.githubusercontent.com/CiscoDevNet/csr_aws_guestshell/master/bin/get-route-table.py
ELB analyzer
https://github.com/ozantunca/elb-log-analyzer
AWS Pentesting Lab
https://github.com/juanjoSanz/aws-pentesting-lab
IAM Vulnerability Scanner
https://github.com/lightspin-tech/red-shadow
Chef InSpec CIS rules scanner:
https://github.com/mitre/aws-foundations-cis-baseline
AWS CLI + JQ cheatsheet
https://gist.github.com/lukeplausin/b64c10f8b524bb310e0083756c42caf6
AWless
https://github.com/wallix/awless
AWS CloudDiscovery:
https://github.com/Cloud-Architects/cloudiscovery
Official AWS Labs Golden AMI hardened and Container images following CIS rules and audits using EC2 Image builder:
https://github.com/aws-samples/deploy-cis-level-1-hardened-ami-with-ec2-image-builder-pipeline
https://github.com/aws-samples/build-and-deploy-docker-images-to-aws-using-ec2-image-builder
EC2 Imagebuilder CIS Controls Component:
https://github.com/sufleio/ec2-image-builder/tree/master/cis-benchmarks
AWS Demos for CDK
https://github.com/miztiik/AWS-Demos
Awesome OSS-Alternatives
https://github.com/RunaCapital/awesome-oss-alternatives
Thanks
A new one appeared:
https://github.com/aquasecurity/trivy
Thanks