Perimeterator
0
Free
Perimeterator is a small project intended to allow for continuous auditing of internet facing AWS services. It can be quickly deployed into AWS and will periodically enumerate internet-facing IP addresses for a number of commonly misconfigured AWS resources. The results from this enumeration process are pushed into a work queue for scanning by external scanner 'workers' in order to locate open network services. Scanner 'workers' can be deployed anywhere, and are intended to be deployed into non-trusted networks in order to provide a representation of access to services from the "general internet". Currently, the following AWS resource types are supported: EC2 ELB ELBv2 RDS ES All communication between Perimeterator components occurs asynchronously through the use of AWS SQS queues. Demo Getting Started / Deployment Perimeterator requires a few components in order to function. However, in order to make getting started as easy as possible, a number of Terraform configs have been provided inside of the terraform/ directory. To get started, please see the terraform/README.md file. Components Perimeterator has a number of components, due to its distributed nature. A brief overview of each component is provided below: * Scanner: Responsible for scanning IP addresses for open network services. * Worker: Responsible for processing work items from the SQS queue. * SQS Queue: Used to communicate between components.
FEATURES
The author has not provided features for this tool yet. If you are the author, please sign in or claim the tool to add features by clicking the icon above.
ALTERNATIVES
Monitors AWS and GCP accounts for policy changes and alerts on insecure configurations, with support for OpenStack and GitHub monitoring.
Free
A tool to find S3 buckets from HTML, JS, and bucket misconfiguration testing
Free
A Lambda Function that disables AWS IAM User Access Keys after a set amount of time to reduce the risk associated with old access keys.
Free
A CLI tool and Go library for generating a Software Bill of Materials (SBOM) from container images and filesystems.
Free
A collection of security workshops and hands-on content for AWS security services and techniques
Free
Comprehensive set of security controls for various AWS services to ensure a secure cloud environment.
Free
Multi-cloud OSINT tool for enumerating public resources in AWS, Azure, and Google Cloud.
Free
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Free
Security Operations
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Free
Blogs and News
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Commercial
Cloud Security
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.
Commercial
AI Security