Skip to content

Instantly share code, notes, and snippets.

@markofu
Last active October 2, 2023 15:30
Show Gist options
  • Star 50 You must be signed in to star a gist
  • Fork 12 You must be signed in to fork a gist
  • Save markofu/549fbd287edf08c38e869dacc740e49d to your computer and use it in GitHub Desktop.
Save markofu/549fbd287edf08c38e869dacc740e49d to your computer and use it in GitHub Desktop.
Security Tools for AWS

Security Tools for AWS

I often get asked which tools are good to use for securing your AWS infrastructure so I figured I'd write a short listof some useful Security Tools for the AWS Cloud Infrastructure.

This list is not intended be something completely exhaustive, more so provide a good launching pad for someone as they dig into AWS and want to make it secure from the start.

Open Source

This section focuses on tools and services provided by the community and released as open-source.

Auth

Tools to help you auth (clients) securely in AWS.

Best Practices & Governance

Tools that enable you to ensure security best practices are followed across your organisation and infrastructure.

Domain Hijacking

DFIR

Tools to help perform Incident Response on AWS

Least Privileges

AWS Least Privilege for Distributed, High-Velocity Deployment

Monitoring / Auditing

Holistic // General

Tools that provide a good way monitoring your overall security posture through scraping configuration and collating it or ingesting logs.

S3

Finding interesting S3 buckets through monitoring certificate transparency logs

Exif Cleaner

Secrets

Secret Keeper

Terraform

Checkov is a static code analysis tool for infrastructure-as-code. It scans cloud infrastructure provisioned using Terraform and detects security and compliance misconfigurations.

AWS

This section focuses on tools and services provided by AWS for a nominal charge or as part of their overall service.

Auth

Services that provide authentication and authorisation to AWS services, with STS enabling that access to be through temporary credentials.

Best Practices & Governance

Service that helps your monitor your AWS services holistically to reduce cost, ensure best practices are being followed and improve security.

Monitoring / Auditing

AWS service that enable your to audit and monitor your configurations and API calls.

Network Perimeter Visibility

AWS Service that is essentially a managed threat detection service that continuously monitors for malicious behaviour to help you protect your AWS accounts and workloads. One of the few things to provide visibility of your external perimeter in AWS.

@robdew
Copy link

robdew commented Feb 28, 2020

Scout2 has move to ScoutSuite https://github.com/nccgroup/ScoutSuite

@markofu
Copy link
Author

markofu commented Mar 8, 2020

Loved that list!
adding 1 more to the list:

Infrastructure as code static analysis
@bridgecrewio Terraform static analysis: https://github.com/bridgecrewio/checkov

Thx @schosterbarak I've added that 👍

@markofu
Copy link
Author

markofu commented Mar 8, 2020

Scout2 has move to ScoutSuite https://github.com/nccgroup/ScoutSuite

Thanks @robdew, it's been updated 👍

@vichiee
Copy link

vichiee commented May 26, 2020

great list!

@seisvelas
Copy link

I made a tool that's been very useful for me: https://github.com/seisvelas/S3-Exif-Cleaner

It removes EXIF data from all objects in an S3 bucket - maybe it will save work for someone else as well :3

@markofu
Copy link
Author

markofu commented May 3, 2021

Thanks @seisvelas, added :)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment