spacesiren / Spacesiren
Licence: gpl-3.0
A honey token manager and alert system for AWS.
Stars: ✭ 247
Programming Languages
python
139335 projects - #7 most used programming language
Projects that are alternatives of or similar to Spacesiren
Aws Maintenance Lambda
A lambda function to send alerts (to Slack, HipChat) on AWS maintenance events.
Stars: ✭ 133 (-46.15%)
Mutual labels: aws, lambda, terraform
Honeylambda
honeyλ - a simple, serverless application designed to create and monitor fake HTTP endpoints (i.e. URL honeytokens) automatically, on top of AWS Lambda and Amazon API Gateway
Stars: ✭ 454 (+83.81%)
Mutual labels: aws, lambda, honeypot
Terraform Aws Github Runner
Terraform module for scalable GitHub action runners on AWS
Stars: ✭ 326 (+31.98%)
Mutual labels: aws, lambda, terraform
Streamalert
StreamAlert is a serverless, realtime data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using datasources and alerting logic you define.
Stars: ✭ 2,634 (+966.4%)
Mutual labels: aws, lambda, terraform
Terraform Nextjs Plugin
A plugin to generate terraform configuration for Nextjs 8 and 9
Stars: ✭ 41 (-83.4%)
Mutual labels: aws, lambda, terraform
Lambda Deployment Example
Automated Lambda Deployments with Terraform & CodePipeline
Stars: ✭ 25 (-89.88%)
Mutual labels: aws, lambda, terraform
Binaryalert
BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.
Stars: ✭ 1,125 (+355.47%)
Mutual labels: aws, lambda, terraform
Terraform Aws Labs
Terraform template for AWS provider ☁️
Stars: ✭ 146 (-40.89%)
Mutual labels: aws, lambda, terraform
Terraform Fargate Example
Example repository to run an ECS cluster on Fargate
Stars: ✭ 206 (-16.6%)
Mutual labels: aws, terraform
Terraform Aws Elastic Beanstalk Environment
Terraform module to provision an AWS Elastic Beanstalk Environment
Stars: ✭ 211 (-14.57%)
Mutual labels: aws, terraform
Aws Etl Orchestrator
A serverless architecture for orchestrating ETL jobs in arbitrarily-complex workflows using AWS Step Functions and AWS Lambda.
Stars: ✭ 245 (-0.81%)
Mutual labels: aws, lambda
Aws Mobile React Native Starter
AWS Mobile React Native Starter App https://aws.amazon.com/mobile
Stars: ✭ 2,247 (+809.72%)
Mutual labels: aws, lambda
Aws Lambda Power Tuning
AWS Lambda Power Tuning is an open-source tool that can help you visualize and fine-tune the memory/power configuration of Lambda functions. It runs in your own AWS account - powered by AWS Step Functions - and it supports three optimization strategies: cost, speed, and balanced.
Stars: ✭ 3,040 (+1130.77%)
Mutual labels: aws, lambda
Serverless Slack App
A Serverless.js Slack App Boilerplate with OAuth and Bot actions
Stars: ✭ 217 (-12.15%)
Mutual labels: aws, lambda
Checkov
Prevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.
Stars: ✭ 3,572 (+1346.15%)
Mutual labels: aws, terraform
Terraform Aws Ecs Container Definition
Terraform module to generate well-formed JSON documents (container definitions) that are passed to the aws_ecs_task_definition Terraform resource
Stars: ✭ 217 (-12.15%)
Mutual labels: aws, terraform
Serverless Analytics
Track website visitors with Serverless Analytics using Kinesis, Lambda, and TypeScript.
Stars: ✭ 219 (-11.34%)
Mutual labels: aws, lambda
Aws Auto Remediate
Open source application to instantly remediate common security issues through the use of AWS Config
Stars: ✭ 191 (-22.67%)
Mutual labels: aws, lambda
Apilogs
Easy logging and debugging for Amazon API Gateway and AWS Lambda Serverless APIs
Stars: ✭ 216 (-12.55%)
Mutual labels: aws, lambda
SpaceSiren
SpaceSiren is a honey token manager and alert system for AWS. With this fully serverless application, you can create and manage honey tokens at scale -- up to 10,000 per SpaceSiren instance -- at close to no cost.1
How It Works
- SpaceSiren provides an API to create no-permission AWS IAM users and access keys for those users.
- You sprinkle the access keys wherever you like, for example in proprietary code or private data stores.
- If one of those sources gets breached, an attacker is likely to use the stolen key to see what they can do with it.
- You will receive an alert that someone attempted to use the key.
Alert Outputs
- PagerDuty
- Slack
- Pushover
Documentation Pages
Requirements
As with any open source project, this one assumes you have the required foundational tools and knowledge, mainly in AWS and Terraform.
Resources
- Terraform >= 0.13
- AWS CLI
- A dedicated AWS account with admin access
- A registered domain
Knowledge
- Basic Terraform
- Basic REST API
- Basic AWS CLI, S3, and Route 53
- Basic AWS Organizations and IAM Roles for cross-account access
- Intermediate DNS (delegating a (sub)domain with NS records)
Contact
If you notice a critical security bug (e.g., one that would grant real access to an AWS account), please responsibly disclose it via email at [email protected].
For standard bugs or feature requests, please open a GitHub issue.
Attributions
Special thanks to:
- Atlassian for Project SpaceCrab, the inspiration for this project. If you want to read about why I started SpaceSiren, please see my SpaceCrab critique page.
- The wonderful and talented Alia Mancisidor for the artwork.
- Anyone who volunteered to test this application for me.
Footnotes
- While SpaceSiren was designed to run as cheaply as possible, even for individuals, it will not be entirely free of operating costs. You will incur nominal costs for DynamoDB, Lambda, API Gateway, Route 53, and perhaps CloudTrail, depending on your configuration. You should expect to spend between $1 and $5 per month to run SpaceSiren. Of course, the project's maintainers are not responsible for any actual costs you incur. Please closely monitor your AWS bill while it is in use.
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].