CheckovPrevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.
PacuThe AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
TerrascanDetect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
Security monkeySecurity Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.
SyntheticSunSyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, managed AWS security services and, serverless technologies to continuously prevent, detect and respond to threats.
aws-lambda-firewallSecurely and conveniently support IP address whitelists for your publicly routable services.
cfngoatCfngoat is Bridgecrew's "Vulnerable by Design" Cloudformation repository. Cfngoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
cdkgoatCdkGoat is Bridgecrew's "Vulnerable by Design" AWS CDK repository. CdkGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
aws-waf-loggerLog all AWS WAF Matched Rules to S3 and/or Loggly using Serverless
GDPatrolA Lambda-powered Security Orchestration framework for AWS GuardDuty
sandcastle🏰 A Python script for AWS S3 bucket enumeration.
AWSXenosAWSXenos will list all the trust relationships in all the IAM roles and S3 buckets
AWS-Mirror-ToolkitA set of tools and procedures for automating NSM and NIDS deployments in AWS
introspectorA schema and set of tools for using SQL to query cloud infrastructure.
CloudFrontierMonitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.