AWS Community repository of custom Config rules. Contributions welcome. Instructions for leveraging these rules are below. Please review each rule carefully and test within your dev/test environment before integrating into production. Getting started with the development of AWS Config Rules See the CONTRIBUTING.md. Related Projects: RDK (Rule Development Kit) - https://github.com/awslabs/aws-config-rdk RDKLib (Library to run rules at scale) - https://github.com/awslabs/aws-config-rdklib Config Rules Engine (Deploy and manage Rules at scale) - https://github.com/awslabs/aws-config-engine-for-compliance-as-code Deploy one of the Config rules of this repo. Whenever the rules are created with RDK, you can leverage the RDK tool to deploy the rule in your AWS account. You can spot those rules by the fact that 1) they have their own directory, and 2) there is a parameters.json file. With the RDK: In your working folder, git clone https://github.com/awslabs/aws-config-rules cd python rdk deploy NAME_OF_THE_RULE Manually: You can use the sample functions in this repository to create Config rules that evaluate the configuration settings of your AWS resources.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Cortex XSOAR is a comprehensive SOAR platform that automates and standardizes security processes for faster response times and increased team productivity.
Catalyst is a SOAR system that automates alert handling and incident response processes, adapting to your workflows and being open source.
Sample security playbooks for security automation, orchestration and response (SOAR) using Microsoft Sentinel trigger
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
A custom activity repository for Ayehu NG automation platform, allowing users to create and modify activities to fit their specific needs.
Open-source security automation platform for automating security alerts and building AI-assisted workflows.
An open-source, drag-and-drop security workflow builder with integrated case management for automating security workflows and tackling alert fatigue.
Shuffle Automation provides an open-source platform for security orchestration, automation, and response.
StackStorm is an open-source automation platform that connects and automates DevOps workflows and integrates with existing infrastructure.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.