Zeus AWS Auditing & Hardening Tool
0
Free
Zeus is a powerful tool for AWS EC2 / S3 / CloudTrail / CloudWatch / KMS best hardening practices. It checks security settings according to the profiles the user creates and changes them to recommended settings based on the CIS AWS Benchmark source at request of the user. Currently, it only includes the Logging mechanism. Identity and Access Management: - Avoid the use of the 'root' account - Ensure multi-factor authentication (MFA) is enabled for all IAM users that have a console password - Ensure credentials unused for 90 days or greater are disabled - Ensure access keys are rotated every 90 days or less - Ensure IAM password policy requires at least one uppercase letter - Ensure IAM password policy requires at least one lowercase letter - Ensure IAM password policy requires at least one symbol - Ensure IAM password policy requires at least one number - Ensure IAM password policy requires minimum length of 14 or greater - Ensure no root account access key exists - Ensure MFA is enabled for the 'root' account - Ensure security questions are registered in the AWS account - Ensure IAM policies are attached only to groups or role - Enable detailed billing - Maintain current conta
FEATURES
The author has not provided features for this tool yet. If you are the author, please sign in or claim the tool to add features by clicking the icon above.
ALTERNATIVES
A cloud-native security platform that combines vulnerability management, workload protection, and security monitoring for cloud environments with context-aware threat detection capabilities.
Commercial
Tool for assessing compliance and running vulnerability scans on Docker images.
Free
Open-source tool for analyzing AWS temporary tokens to detect malicious activity.
Free
A cloud native security platform that uses behavioral fingerprinting and runtime verification to detect threats across Kubernetes environments, cloud infrastructure, and software supply chains.
Commercial
Lists AWS resources using the AWS Cloud Control API and writes them to a JSON output file.
Free
Weave Scope automatically generates a map of your application for troubleshooting and monitoring Docker & Kubernetes.
Free
Kube-bench is a tool for checking Kubernetes security based on CIS Kubernetes Benchmark.
Free
Generate Amazon GuardDuty findings related to real AWS resources with multiple tests available.
Free
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Commercial
Resources
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Free
Security Operations
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Free
Blogs and News
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Commercial
Cloud Security
RoboShadow
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Commercial
Vulnerability Management
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.
Commercial
AI Security