23 Open source projects that are alternatives of or similar to AWS-Mirror-Toolkit

A schema and set of tools for using SQL to query cloud infrastructure.

Jxnet is a Java library for capturing and sending custom network packet buffers with no copies. Jxnet wraps a native packet capture library (libpcap/winpcap/npcap) via JNI (Java Native Interface).

Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.

Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management

A Python implementation of the Community ID flow hashing standard

A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the necessary hardware and setup and finally provide some examples of how you can use the power of Zeek to have absolute control over your network.

Mapping NSM rules to MITRE ATT&CK

A website and framework for testing NIDS detection

An open standard for hashing network flows into identifiers, a.k.a "Community IDs".

Prevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.

SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, managed AWS security services and, serverless technologies to continuously prevent, detect and respond to threats.

Securely and conveniently support IP address whitelists for your publicly routable services.

🛡️ Awesome Cloud Security Resources ⚔️

Cfngoat is Bridgecrew's "Vulnerable by Design" Cloudformation repository. Cfngoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.

CdkGoat is Bridgecrew's "Vulnerable by Design" AWS CDK repository. CdkGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.

Log all AWS WAF Matched Rules to S3 and/or Loggly using Serverless

A Lambda-powered Security Orchestration framework for AWS GuardDuty

🏰 A Python script for AWS S3 bucket enumeration.

Pre-configured response & remediation playbooks for AWS Security Hub

AWSXenos will list all the trust relationships in all the IAM roles and S3 buckets