AWS Secrets Manager
A fully managed service that securely stores, rotates, and manages sensitive data such as database credentials and API keys.
Container Compliance Resources and tools to assert compliance of containers (rocket, docker, ...). Assessing running containers and cold images. Vulnerability and compliance audit. Vulnerability scan of Docker image. This command will attach docker image, determine OS variant/version, download CVE stream applicable to the given OS, and finally run vulnerability scan. Scanning Docker image using OpenSCAP. Run any OpenSCAP command within chroot of mounted docker image. Learn more about OSCAP_ARGUMENTS in man oscap.
A fully managed service that securely stores, rotates, and manages sensitive data such as database credentials and API keys.
Converts the format of various S3 buckets for bug bounty and security testing.
A framework for executing attacker actions in the cloud with YAML-based format for defining TTPs and detection properties, deployable via AWS-native CI/CD pipeline.
Lists AWS resources using the AWS Cloud Control API and writes them to a JSON output file.
Zeus is a powerful tool for AWS EC2 / S3 / CloudTrail / CloudWatch / KMS best hardening practices with a focus on Identity and Access Management.
CloudDefense.AI is a Cloud Native Application Protection Platform (CNAPP) that safeguards cloud infrastructure and cloud-native apps with expertise, precision, and confidence.