Jump to content

aws security tools


D4rkn3S
 Share

Recommended Posts

hello guys, here is github link of AWS security tools

 

Spoiler

Defensive (Hardening, Security Assessment, Inventory)

Scout2:

Hidden Content

    Give reaction to this post to see the hidden content.
- Security auditing tool for AWS environments (Python)
Prowler:

Hidden Content

    Give reaction to this post to see the hidden content.
- CIS benchmarks and additional checks for security best practices in AWS (Shell Script)
Scans:

Hidden Content

    Give reaction to this post to see the hidden content.
- AWS security scanning checks (NodeJS)
CloudMapper:

Hidden Content

    Give reaction to this post to see the hidden content.
- helps you analyze your AWS environments (Python)
CloudTracker:

Hidden Content

    Give reaction to this post to see the hidden content.
- helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies (Python)
AWS Security Benchmarks:

Hidden Content

    Give reaction to this post to see the hidden content.
- scrips and templates guidance related to the AWS CIS Foundation framework (Python)
AWS Public IPs:

Hidden Content

    Give reaction to this post to see the hidden content.
- Fetch all public IP addresses tied to your AWS account. Works with IPv4/IPv6, Classic/VPC networking, and across all AWS services (Ruby)
PMapper:

Hidden Content

    Give reaction to this post to see the hidden content.
- Advanced and Automated AWS IAM Evaluation (Python)
AWS-Inventory:

Hidden Content

    Give reaction to this post to see the hidden content.
- Make a inventory of all your resources across regions (Python)
Resource Counter:

Hidden Content

    Give reaction to this post to see the hidden content.
- Counts number of resources in categories across regions
ICE:

Hidden Content

    Give reaction to this post to see the hidden content.
- Ice provides insights from a usage and cost perspective, with high detail dashboards.
SkyArk:

Hidden Content

    Give reaction to this post to see the hidden content.
- SkyArk provides advanced discovery and security assessment for the most privileged entities in the tested AWS.
Offensive:

weirdALL:

Hidden Content

    Give reaction to this post to see the hidden content.
- AWS Attack Library
Pacu:

Hidden Content

    Give reaction to this post to see the hidden content.
- AWS penetration testing toolkit
Cred Scanner:

Hidden Content

    Give reaction to this post to see the hidden content.

AWS PWN:

Hidden Content

    Give reaction to this post to see the hidden content.

Cloudfrunt:

Hidden Content

    Give reaction to this post to see the hidden content.

Cloudjack:

Hidden Content

    Give reaction to this post to see the hidden content.

Nimbostratus:

Hidden Content

    Give reaction to this post to see the hidden content.

Continuous Security Auditing:

Security Monkey:

Hidden Content

    Give reaction to this post to see the hidden content.

Krampus (as Security Monkey complement)

Hidden Content

    Give reaction to this post to see the hidden content.

Cloud Inquisitor:

Hidden Content

    Give reaction to this post to see the hidden content.

CloudCustodian:

Hidden Content

    Give reaction to this post to see the hidden content.

Disable keys after X days:

Hidden Content

    Give reaction to this post to see the hidden content.

Repokid Least Privilege:

Hidden Content

    Give reaction to this post to see the hidden content.

Wazuh CloudTrail module:

Hidden Content

    Give reaction to this post to see the hidden content.

Hammer:

Hidden Content

    Give reaction to this post to see the hidden content.

Streamalert:

Hidden Content

    Give reaction to this post to see the hidden content.

DFIR:

AWS IR:

Hidden Content

    Give reaction to this post to see the hidden content.
- AWS specific Incident Response and Forensics Tool
Margaritashotgun:

Hidden Content

    Give reaction to this post to see the hidden content.
- Linux memory remote acquisition tool
LiMEaide:

Hidden Content

    Give reaction to this post to see the hidden content.
- Linux memory remote acquisition tool
Diffy:

Hidden Content

    Give reaction to this post to see the hidden content.
- Triage tool used during cloud-centric security incidents
Development Security:

CFN NAG:

Hidden Content

    Give reaction to this post to see the hidden content.
- CloudFormation security test (Ruby)
Git-secrets:

Hidden Content

    Give reaction to this post to see the hidden content.

Repository of sample Custom Rules for AWS Config:

Hidden Content

    Give reaction to this post to see the hidden content.

S3 Buckets Auditing:

Hidden Content

    Give reaction to this post to see the hidden content.

Hidden Content

    Give reaction to this post to see the hidden content.

Hidden Content

    Give reaction to this post to see the hidden content.

Hidden Content

    Give reaction to this post to see the hidden content.

Hidden Content

    Give reaction to this post to see the hidden content.

Hidden Content

    Give reaction to this post to see the hidden content.

Hidden Content

    Give reaction to this post to see the hidden content.

Hidden Content

    Give reaction to this post to see the hidden content.

Hidden Content

    Give reaction to this post to see the hidden content.

Hidden Content

    Give reaction to this post to see the hidden content.

Hidden Content

    Give reaction to this post to see the hidden content.

Hidden Content

    Give reaction to this post to see the hidden content.

Hidden Content

    Give reaction to this post to see the hidden content.

Hidden Content

    Give reaction to this post to see the hidden content.

Hidden Content

    Give reaction to this post to see the hidden content.

Hidden Content

    Give reaction to this post to see the hidden content.

Hidden Content

    Give reaction to this post to see the hidden content.

Hidden Content

    Give reaction to this post to see the hidden content.
|

Hidden Content

    Give reaction to this post to see the hidden content.
  [Currently Offline]

Hidden Content

    Give reaction to this post to see the hidden content.

Training:

Hidden Content

    Give reaction to this post to see the hidden content.

Others:

Hidden Content

    Give reaction to this post to see the hidden content.
- a list of some biggest leaks recorded

 

Hidden Content

    Give reaction to this post to see the hidden content.

Link to comment
Share on other sites

Guest
This topic is now closed to further replies.
 Share

Chat Room

Chat Room

Chatroom Rules

No support in chat, open a thread.

×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.