GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → FSecureLABS → Awspx

FSecureLABS / Awspx

Licence: gpl-3.0
A graph-based tool for visualizing effective access and resource relationships in AWS environments.

Programming Languages

python
139335 projects - #7 most used programming language

Labels

awspentestinggraph-theory

Projects that are alternatives of or similar to Awspx

Aaia
AWS Identity and Access Management Visualizer and Anomaly Finder
Stars: ✭ 218 (-60.07%)
Mutual labels:  aws, pentesting
Slurp
Evaluate the security of S3 buckets
Stars: ✭ 183 (-66.48%)
Mutual labels:  aws, pentesting
Attacking Cloudgoat2
A step-by-step walkthrough of CloudGoat 2.0 scenarios.
Stars: ✭ 97 (-82.23%)
Mutual labels:  aws, pentesting
Ccat
Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.
Stars: ✭ 300 (-45.05%)
Mutual labels:  aws, pentesting
Deep Framework
Full-stack JavaScript Framework for Cloud-Native Web Applications (perfect for Serverless use cases)
Stars: ✭ 533 (-2.38%)
Mutual labels:  aws
Mt Aws Glacier
Perl Multithreaded Multipart sync to Amazon Glacier
Stars: ✭ 522 (-4.4%)
Mutual labels:  aws
Yasuo
A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network
Stars: ✭ 517 (-5.31%)
Mutual labels:  pentesting
Aws Vault
A vault for securely storing and accessing AWS credentials in development environments
Stars: ✭ 5,626 (+930.4%)
Mutual labels:  aws
Spring Cloud Aws
Integration for Amazon Web Services APIs with Spring
Stars: ✭ 541 (-0.92%)
Mutual labels:  aws
Dynamodb Gui Client
DynamoDb GUI Client
Stars: ✭ 540 (-1.1%)
Mutual labels:  aws
Abixen Platform
Abixen Platform
Stars: ✭ 530 (-2.93%)
Mutual labels:  aws
S3 Benchmark
Measure Amazon S3's performance from any location.
Stars: ✭ 525 (-3.85%)
Mutual labels:  aws
Red Teaming Toolkit
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
Stars: ✭ 5,615 (+928.39%)
Mutual labels:  pentesting
Infrastructure As Code Talk
Sample code for the talk "Infrastructure-as-code: running microservices on AWS with Docker, ECS, and Terraform"
Stars: ✭ 520 (-4.76%)
Mutual labels:  aws
Ssh Over Ssm
SSH over AWS SSM. No bastions or public-facing instances. SSH user management through IAM. No requirement to store SSH keys locally or on server.
Stars: ✭ 541 (-0.92%)
Mutual labels:  aws
Kubernetes On Aws
Deploying Kubernetes on AWS with CloudFormation and Ubuntu
Stars: ✭ 517 (-5.31%)
Mutual labels:  aws
Skyark
SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS
Stars: ✭ 526 (-3.66%)
Mutual labels:  aws
Escalator
Escalator is a batch or job optimized horizontal autoscaler for Kubernetes
Stars: ✭ 539 (-1.28%)
Mutual labels:  aws
Awless
A Mighty CLI for AWS
Stars: ✭ 4,821 (+782.97%)
Mutual labels:  aws
Saws
A supercharged AWS command line interface (CLI).
Stars: ✭ 4,886 (+794.87%)
Mutual labels:  aws
View All Similar Projects ➔

auspex [ˈau̯s.pɛks] noun: An augur of ancient Rome, especially one who interpreted omens derived from the observation of birds.

Overview

awspx is a graph-based tool for visualizing effective access and resource relationships within AWS. It resolves policy information to determine what actions affect which resources, while taking into account how these actions may be combined to produce attack paths. Unlike tools like Bloodhound, awspx requires permissions to function — it is not expected to be useful in cases where these privileges have not been granted.

Table of contents

For more information, checkout the awspx Wiki

Getting Started

For detailed installation instructions, usage, and answers to frequently asked questions, see sections: Setup; Data Collection and Exploration; and FAQs, respectively.

Installation

awspx can be installed on either Linux or macOS. In each case Docker is required.

  1. Clone this repo
git clone https://github.com/FSecureLABS/awspx.git
  1. Run the INSTALL script
cd awspx && ./INSTALL

Usage

awspx consists of two main components: the ingestor, which collects AWS account data; and the web interface, which allows you to explore it.

  1. Run the ingestor against an account of your choosing. You will be prompted for credentials.

    awspx ingest

    OR optionally forgo this step and load the sample dataset instead.

    awspx db --load-zip sample.zip
awspx attacks

  2. Browse to the web interfacehttp://localhost by default — and explore this environment.

Contributing

This project is in its early days and there's still plenty that can be done. Whether its submitting a fix, identifying bugs, suggesting enhancements, creating or updating documentation, refactoring smell code, or even extending this list — all contributions help and are more than welcome. Please feel free to use your judgement and do whatever you think would benefit the community most.

See Contributing for more information.

License

awspx is a graph-based tool for visualizing effective access and resource relationships within AWS. (C) 2018-2020 F-SECURE.

This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.

This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.

You should have received a copy of the GNU General Public License along with this program. If not, see https://www.gnu.org/licenses/.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].