A carefully curated list of open source projects aimed at improving your AWS security posture!
I would love as much help as I can get. Start contributing!
Follow me on Twitter for more security goodness.
A collection of tools to help you learn AWS security.
Cloud Goat - Rhino Security Labs' "Vulnerable by Design" AWS infrastructure setup tool
flAWS - Through a series of levels you'll learn about common mistakes and gotchas when using Amazon Web Services (AWS).
flAWS2 - Similar to the original flAWS.cloud (also created by Summit Route), this game/tutorial teaches you AWS (Amazon Web Services) security concepts.
A collection of tools to help you understand more about your AWS environment.
CloudMapper - CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
ScoutSuite - Scout Suite is an open source multi-cloud security-auditing tool, which enables security posture assessment of cloud environments.
Scout2 (Archived) - Scout2 was a security tool that lets AWS administrators assess their environment's security posture. Replaced by ScoutSuite above.
Security Monkey - Security Monkey monitors your AWS and GCP accounts for policy changes and alerts on insecure configurations.
A collection of tools to test your AWS environment.
Pacu - Pacu is an open source AWS exploitation framework, designed for offensive security testing against cloud environments.
Chaos Monkey - Chaos Monkey randomly terminates virtual machine instances and containers that run inside of your production environment.
A collection of tools to help you enforce security on your AWS accounts.
Vault - Vault is a tool for securely accessing secrets.
AWS Vault - Securely store and access credentials for AWS.
Cloud Custodian - Cloud Custodian is a rules engine for managing public cloud accounts and resources.
Stream Alert- StreamAlert is a serverless, real-time data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using data sources and alerting logic you define.
netsec - Home of code related to security of network systems.
aws-okta - allows you to authenticate with AWS using your Okta credentials
S3 VirusScan - Antivirus for S3 buckets. You can connect as many buckets as you like by using S3 Event Notifications
Manage AWS EC2 SSH access with IAM - Use your IAM user's public SSH key to get access via SSH to an EC2 instance running (see note)
