Stars
A python library exposing services that are not covered by the official boto3 library but are driven by undocumented APIs.
An ongoing accounting of what AWS's service gaps are in their IPv6 coverage, specifically those that have economic impact.
Model files for undocumented AWS APIs
An open project to list all publicly known cloud vulnerabilities and CSP security issues
An encyclopedia for offensive and defensive security knowledge in cloud native technologies.
Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
A library of rules for Conftest used to detect misconfigurations within Terraform configuration files
Extensible auto-tagger for your IaC files. The ultimate way to link entities in the cloud back to the codified resource which created it.
Research on the enumeration of IAM permissions without logging to CloudTrail
Got Your Back (GYB) is a command line tool for backing up your Gmail messages to your computer using Gmail's API over HTTPS.
The AWS Secure Environment Accelerator is a tool designed to help deploy and operate secure multi-account, multi-region AWS environments on an ongoing basis. The power of the solution is the config…
List of changes announced for AWS that may break existing code
Analyze HTTP requests to minimize risks of HTTP Desync attacks (precursor for HTTP request smuggling/splitting).
JSON configuration files with comments, unquoted keys, trailing commas and line number information for config error reporting.
AWS IP Ranges History Tracker Amazon - AWS provides a list of IP Addresses used by their various services through a published ip-ranges.json file. This Git repository tracks this file so that chang…
Automated CloudFormation drift remediation using Import functionality
Glue workflow to convert CloudTrail logs to Athena-friendly Parquet format
Automated Attack Simulation in the Cloud, complete with detection use cases.
Guard offers a policy-as-code domain-specific language (DSL) to write rules and validate JSON- and YAML-formatted data such as CloudFormation Templates, K8s configurations, and Terraform JSON plans…
Azure Red Team tool for graphing Azure and Azure Active Directory objects
A simple library to generate IAM policy statements with no need to remember all the actions APIs
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
zoph-io / MAMIP
Forked from SummitRoute/aws_managed_policies[MAMIP] Monitor AWS Managed IAM Policies Changes