Security Monkey
Security Monkey monitors your AWS and GCP accounts for policy changes and alerts on insecure configurations. Support is available for OpenStack public and private clouds. It can also watch and monitor GitHub organizations, teams, and repositories, providing a single UI to browse and search through all accounts, regions, and cloud services. The tool remembers previous states, shows exactly what changed and when, and can be extended with custom account types, watchers, auditors, and alerters. It works on CPython 2.7 and is known to work on Ubuntu Linux and OS X. Note: Security Monkey is in maintenance mode and will be end-of-life in 2020, with reduced support from Netflix.
FEATURES
ALTERNATIVES
Multi-account cloud security tool for AWS with real-time reporting and auto-remediation capabilities.
Collection of Kubernetes manifests creating pods with elevated privileges for security testing.
A free training course and lab environment for learning to test and attack cloud infrastructure, including AWS and Azure.
A command line tool that counts Amazon resources across regions and displays the results in a friendly format.
Open-source tool for analyzing AWS temporary tokens to detect malicious activity.
A framework for executing attacker actions in the cloud with YAML-based format for defining TTPs and detection properties, deployable via AWS-native CI/CD pipeline.
An open-sourced framework for managing resources across hundreds of AWS Accounts
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Kriptos
An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.