AWS安全开源工具列表：防御、进攻、审计、DFIR等。___下载.zip

## Table of Contents - [Contribute](#contribute) - [Defensive](#defensive-hardening-security-assessment-and-inventory) - [Offensive](#offensive) - [Purple Teaming & Adversary Emulation](#purple-teaming--adversary-emulation) - [Continuous Security Auditing](#continuous-security-auditing) - [Digital Forensics and Incident Response](#digital-forensics-and-incident-response) - [Development Security](#development-security) - [S3 Buckets Auditing](#s3-buckets-auditing) - [Training](#training) - [Other interesting tools/code](#other-interesting-toolscode) ## Contribute Do you want to contribute to this list? Feel free to send a PR and make sure your tool is [Open Source](https://en.wikipedia.org/wiki/Open_source). | Name | Description | Popularity | Metadata | | ---------- | :---------- | :----------: | :----------: | | **[My Arsenal of AWS Security Tools](https://github.com/toniblyx/my-arsenal-of-aws-security-tools)** | This list of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.|[](https://badgen.net/github/stars/toniblyx/my-arsenal-of-aws-security-tools)| [](https://badgen.net/github/contributors/toniblyx/my-arsenal-of-aws-security-tools) [](https://badgen.net/github/watchers/toniblyx/my-arsenal-of-aws-security-tools) [](https://badgen.net/github/last-commit/toniblyx/my-arsenal-of-aws-security-tools) [](https://badgen.net/github/open-issues/toniblyx/my-arsenal-of-aws-security-tools) [](https://badgen.net/github/closed-issues/toniblyx/my-arsenal-of-aws-security-tools) | ## Defensive: Hardening, Security Assessment and Inventory | Name | Description | Popularity | Metadata | | ---------- | :---------- | :----------: | :----------: | | **[Prowler](https://github.com/toniblyx/prowler)** | CIS benchmarks and additional checks for security best practices in AWS (bash and python components) |[](https://badgen.net/github/stars/toniblyx/prowler)| [](https://badgen.net/github/contributors/toniblyx/prowler)[](https://badgen.net/github/watchers/toniblyx/prowler)[](https://badgen.net/github/last-commit/toniblyx/prowler) [](https://badgen.net/github/open-issues/toniblyx/prowler) [](https://badgen.net/github/closed-issues/toniblyx/prowler) | | **[CloudMapper](https://github.com/duo-labs/cloudmapper)** | helps you analyze your AWS environments (Python) |[](https://badgen.net/github/stars/duo-labs/cloudmapper)| [](https://badgen.net/github/contributors/duo-labs/cloudmapper)[](https://badgen.net/github/watchers/duo-labs/cloudmapper)[](https://badgen.net/github/last-commit/duo-labs/cloudmapper) [](https://badgen.net/github/open-issues/duo-labs/cloudmapper) [](https://badgen.net/github/closed-issues/duo-labs/cloudmapper) | | **[ScoutSuite](https://github.com/nccgroup/ScoutSuite)** | Multi-Cloud Security auditing tool for AWS Google Cloud and Azure environments (python) |[](https://badgen.net/github/stars/nccgroup/ScoutSuite)| [](https://badgen.net/github/contributors/nccgroup/ScoutSuite)[](https://badgen.net/github/watchers/nccgroup/ScoutSuite)[](https://badgen.net/github/last-commit/nccgroup/ScoutSuite) [](https://badgen.net/github/open-issues/nccgroup/ScoutSuite) [](https://badgen.net/github/closed-issues/nccgroup/ScoutSuite) | | **[CloudCustodian](https://github.com/cloud-custodian/cloud-custodian/)** | Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources |[](https://badgen.net/github/stars/cloud-custodian/cloud-custodian/)| [](https://badgen.net/github/contributors/cloud-custodian/cloud-custodian/)[](https://badgen.net/github/watchers/cloud-custodian/cloud-custodian/)[](https://badgen.net/github/last-commit/cloud-custodian/cloud-custodian/) [](https://badgen.net/github/open-issues/cloud-custodian/cloud-custodian/) [](https://badgen.net/github/closed-issues/cloud-custodian/cloud-custodian/) | | **[ICE](https://github.com/Teevity/ice)** | Ice provides insights from a usage and cost perspective with high detail dashboards. |[](https://badgen.net/github/stars/Teevity/ice)| [](https://badgen.net/github/contributors/Teevity/ice)[](https://badgen.net/github/watchers/Teevity/ice)[](https://badgen.net/github/last-commit/Teevity/ice) [](https://badgen.net/github/open-issues/Teevity/ice) [](https://badgen.net/github/closed-issues/Teevity/ice) | | **[CloudSploit Scans](https://github.com/cloudsploit/scans)** | AWS security scanning checks (NodeJS) |[](https://badgen.net/github/stars/cloudsploit/scans)| [](https://badgen.net/github/contributors/cloudsploit/scans)[](https://badgen.net/github/watchers/cloudsploit/scans)[](https://badgen.net/github/last-commit/cloudsploit/scans) [](https://badgen.net/github/open-issues/cloudsploit/scans) [](https://badgen.net/github/closed-issues/cloudsploit/scans) | | **[AWS Network Access Analyzer](https://github.com/aws-samples/network-access-analyzer-multi-account