ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks

A collection of lambda functions to collect data from Cloudwatch, Kinesis, VPC Flow logs, S3, security-hub and AWS Inspector

Code examples for the AWS Security Blog post: How to use CI/CD to deploy and configure AWS security services with Terraform

Advanced AWS Security Automation Resources: Used by Udemy Course 🎓

Proof of Value Terraform Scripts to utilize Amazon Web Services (AWS) Security, Identity & Compliance Services to Support your AWS Account Security Posture.

Configure and deploy AWS Security Hub.

control-controls control controls of AWS Security Hub across all regions.

AWS Security Hub automatic suppression rules

AWS native Static Application Security Testing (SAST) utility to find and eradicate vulnerable software packages stored in AWS CodeArtifact. Built for both real-time distributed and centralized deployments.

An AWS Security Hub Custom Findings provider, using the Have I Been Pwned API

AWS Fargate and Prowler to send AWS service security configuration findings to Security Hub to Automate Compliance Checks for AWS CIS Benchmarks

Analyse database activity with Aurora Database Activity Streams and send findings to Security Hub

Terraform module to update AWS securityhub findings such as suppressions

🛡️ Terraform module to provision multi-region AWS cloud security controls

An AWS Security Hub Custom Findings provider, using the Have I Been Pwned API

Security & Privacy hub (website).

Terraform module to enable AWS security hub

🛠️ Sets up Opsgenie + Amazon Security Hub integration using Terraform

This AWS SAM (Serverless Application Model) deployment configures the required resources to send Trend Micro's Cloud One Application Security events to AWS Security Hub.