LambdaGuard
LambdaGuard is an AWS Lambda auditing tool designed to create asset visibility and provide actionable results. It provides a meaningful overview in terms of statistical analysis, AWS service dependencies and configuration checks from the security perspective. Requirements: * Python 3.6+ * Java 11 (optional for SonarQube) Install: * From PyPI: pip3 install lambdaguard * From Github: git clone https://github.com/Skyscanner/lambdaguard cd lambdaguard sudo make install AWS Access: * You will need a set of AWS access keys and permissions to run LambdaGuard. * Create a profile in ~/.aws/credentials with the newly created keys. * Alternatively, you can use the keys directly as CLI arguments (not recommended). Run: * lambdaguard --help * lambdaguard --function arn:aws:lambda:function * lambdaguard --input function-arns.txt * lambdaguard --output /tmp/lambdaguard * lambdaguard --profile LambdaGuardProf
FEATURES
ALTERNATIVES
A Python script that lists all main resources of your AWS account, helping you find resources that affect billing and/or security.
Comprehensive set of security controls for various AWS services to ensure a secure cloud environment.
Open-source policy-as-code software for multi-cloud and SaaS environments with GPT model conversations and custom analysis policies.
An AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.
A tool that determines what AWS API calls are logged by CloudTrail and what they are logged as, and can also be used as an attack simulation framework.
A tool to fetch all public IP addresses associated with an AWS account
A command-line tool to get valuable information out of AWS CloudTrail and a general purpose toolbox for working with IAM policies
Multi-cloud OSINT tool for enumerating public resources in AWS, Azure, and Google Cloud.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.