FunctionShield is a 100% free AWS Lambda security and Google Cloud Functions security library that equips developers with the ability to easily enforce strict security controls on serverless runtimes by addressing 4 common use cases: - Disable outbound internet connectivity (except for AWS/Google Cloud resources) from the serverless runtime environment, if such connections are not required - Disable read/write on the /tmp/ directory, if such operations are not required - Disable child process execution, if such execution is not required by the function - Disable read access to the function's handler and prevent source code leakage FunctionShield is no longer actively maintained and is recommended to be used as a reference only.
FEATURES
ALTERNATIVES
Cloud Security Dashboard with AWS CIS Security Benchmarks and JIRA integration.
Zeus is a powerful tool for AWS EC2 / S3 / CloudTrail / CloudWatch / KMS best hardening practices with a focus on Identity and Access Management.
Create Docker container images for testing and long-term use.
A command-line tool to get valuable information out of AWS CloudTrail and a general purpose toolbox for working with IAM policies
An AWS Lambda auditing tool that provides asset visibility and actionable results through statistical analysis and security checks.
An open source cloud security platform for discovering, prioritizing, and remediating risks in the cloud.
A project exploring minimal set of restrictions for running untrusted code using Linux containers in a concise codebase.
CloudFox helps gain situational awareness in unfamiliar cloud environments for penetration testers and offensive security professionals.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
RoboShadow
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.