Title: Free or Open Source Resources to Help with AWS Security  
Author: Paul Allen Apr 08, 2021
Last Changed by: Paul Allen Apr 22, 2024
Tiny Link: (useful for email) https://confluence.cornell.edu/x/dZPQFw
Export As: Word · PDF  
Incoming Links
Cloud Support (1)
    Page: 2021-04 AWS Security Immersion Days
Hierarchy
Parent Page
    Page: 2021-04 AWS Security Immersion Days
Labels
Global Labels (1)
Recent Changes
Time Editor  
Apr 22, 2024 09:57 Paul Allen View Changes
Jan 23, 2024 06:40 Paul Allen View Changes
Jan 17, 2024 07:44 Paul Allen View Changes
Mar 30, 2023 12:16 Paul Allen View Changes
Mar 13, 2023 13:56 Paul Allen  
Outgoing Links
External Links (106)
    https://github.com/toshke/aws-keys-sectool
    https://www.nojones.net/posts/aws-access-keys-a-reference/
    https://github.com/RhinoSecurityLabs/pacu
    https://github.com/Permiso-io-tools/CloudConsoleCartographe…
    https://awspolicygen.s3.amazonaws.com/policygen.html
    https://github.com/BishopFox/cloudfoxable
    https://github.com/Skyscanner/cfripper
    https://github.com/Permiso-io-tools/CloudGrappler
    https://github.com/toniblyx/prowler
    https://github.com/nccgroup/ScoutSuite
    https://github.com/aminohealth/wonk
    https://github.com/stelligent/cfn_nag
    https://github.com/sa7mon/S3Scanner
    https://github.com/avishayil/cdk-goat
    https://tldrsec.com/blog/cloud-security-orienteering/
    https://github.com/salesforce/policy_sentry
    https://github.com/puresec/awesome-serverless-security
    https://github.com/airbnb/streamalert
    https://github.com/DataDog/stratus-red-team
    https://github.com/aws/rolesanywhere-credential-helper
    https://github.com/aws-cloudformation/cloudformation-guard
    https://medium.com/engineers-haven/github-actions-aws-oidc-…
    https://awsteele.com/blog/2021/09/15/aws-federation-comes-t…
    https://github.com/s12v/exec-with-secrets
    https://github.com/airbnb
    https://docs.aws.amazon.com/rolesanywhere/latest/userguide/…
    https://github.com/Netflix/repokid
    https://d1.awsstatic.com/whitepapers/aws_security_incident_…
    https://github.com/dxa4481/truffleHog
    https://github.com/simonw/s3-credentials
    https://github.com/toniblyx
    https://github.com/zricethezav
    https://github.com/rapid7/awsaml
    https://github.com/goldfiglabs
    https://github.com/redcanaryco/atomic-red-team
    https://github.com/puresec
    https://github.com/awslabs/git-secrets
    https://github.blog/changelog/2021-10-27-github-actions-sec…
    https://github.com/tmobile/pacbot
    https://www.chrisfarris.com/post/aws-ir/
    https://github.com/9rnt/poro
    https://aws.permissions.cloud/
    https://github.com/tuladhar/cleanup-aws-access-keys
    flaws2.cloud/
    https://registry.terraform.io/providers/hashicorp/aws/lates…
    https://github.com/turbot/steampipe
    aws.amazon.com/
    https://github.com/toniblyx/my-arsenal-of-aws-security-tool…
    https://pypi.org/project/awscli-login/
    https://github.com/stefansundin/aws-rotate-key
    https://github.com/jonrau1/ElectricEye
    https://github.com/Hacking-the-Cloud/hackingthe.cloud
    https://tldrsec.com/blog/lesser-known-aws-attacks/
    https://github.com/awslabs/aws-automated-incident-response-…
    https://github.com/iann0036
    https://github.com/awslabs/aws-security-assessment-solution
    https://github.com/duo-labs/parliament
    https://github.com/99designs/aws-vault
    https://github.com/RiotGames
    https://github.com/BishopFox/cloudfox
    https://github.com/zricethezav/gitleaks
    https://github.com/Netflix
    https://github.com/RiotGames/cloud-inquisitor
    https://hackingthe.cloud/
    https://github.com/flosell/iam-policy-json-to-terraform
    https://github.com/cloudquery/cloudquery
    https://github.com/iann0036/iamlive
    https://github.com/fivexl/terraform-aws-cloudtrail-to-slack
    https://github.com/darkbitio/aws-recon
    https://github.com/BishopFox/iam-vulnerable
    https://github.com/ermetic/access-undenied-aws
    https://github.com/sa7mon
    https://github.com/goldfiglabs/rpCheckup
    https://github.com/RhinoSecurityLabs/cloudgoat
    https://github.com/tmobile
    https://github.com/aws-samples/aws-security-workshops
    https://github.com/synfinatic/aws-sso-cli
    https://github.com/bridgecrewio/checkov
    https://docs.aws.amazon.com/rolesanywhere/latest/userguide/…
    https://github.com/righteousgambitresearch/quiet-riot
    https://github.com/awslabs
    https://github.com/Netflix/security_monkey
    https://asecure.cloud/
    https://github.com/99designs
    https://github.com/ramimac/aws-customer-security-incidents
    https://github.com/awslabs/aws-cloudsaga
    https://github.com/cloud-custodian/cloud-custodian
    https://github.com/aws-samples/aws-serverless-security-work…
    https://github.com/flosell/trailscraper
    https://labs.bishopfox.com/tech-blog/iam-vulnerable-assessi…
    https://github.com/duo-labs/cloudtracker
    https://github.com/zoph-io/aws-security-survival-kit
    https://github.com/cloud-custodian
    https://github.com/PaloAltoNetworks/IAM-Deescalate
    https://tldrsec.com/blog/cloud-security-orienteering-checkl…
    https://github.com/awslabs/assisted-log-enabler-for-aws
    https://github.com/dxa4481
    https://github.com/duo-labs
    https://github.com/aquasecurity
    https://github.com/aquasecurity/cloudsploit
    https://github.com/salesforce
    https://hackingthe.cloud/aws/capture_the_flag/cicdont/
    https://github.com/ovotech/domain-protect
    https://github.com/stelligent
    https://github.com/RiotGames/key-conjurer
    https://github.com/rapid7
Cloud Support (1)     Page: Access Keys for AWS CLI Using Cornell Two-Step Login - Shibboleth