Zeus AWS Auditing & Hardening Tool
Zeus is a powerful tool for AWS EC2 / S3 / CloudTrail / CloudWatch / KMS best hardening practices. It checks security settings according to the profiles the user creates and changes them to recommended settings based on the CIS AWS Benchmark source at request of the user. Currently, it only includes the Logging mechanism. Identity and Access Management: - Avoid the use of the 'root' account - Ensure multi-factor authentication (MFA) is enabled for all IAM users that have a console password - Ensure credentials unused for 90 days or greater are disabled - Ensure access keys are rotated every 90 days or less - Ensure IAM password policy requires at least one uppercase letter - Ensure IAM password policy requires at least one lowercase letter - Ensure IAM password policy requires at least one symbol - Ensure IAM password policy requires at least one number - Ensure IAM password policy requires minimum length of 14 or greater - Ensure no root account access key exists - Ensure MFA is enabled for the 'root' account - Ensure security questions are registered in the AWS account - Ensure IAM policies are attached only to groups or role - Enable detailed billing - Maintain current conta
FEATURES
ALTERNATIVES
A command line tool that counts Amazon resources across regions and displays the results in a friendly format.
A tool that determines what AWS API calls are logged by CloudTrail and what they are logged as, and can also be used as an attack simulation framework.
Export Kubernetes events for observability and alerting purposes with flexible routing options.
A customized AWS EKS setup for PCI-DSS, SOC2, and HIPAA compliance
Tool for analyzing cloud resources against best practices and generating reports.
Gatekeeper is a policy management tool for Kubernetes that provides an extensible, parameterized policy library and native Kubernetes CRDs for instantiating and extending the policy library.
minikube implements a local Kubernetes cluster for easy application development and supports various Kubernetes features.
A cloud-native security platform that combines vulnerability management, workload protection, and security monitoring for cloud environments with context-aware threat detection capabilities.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Kriptos
An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.