ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks

A collection of lambda functions to collect data from Cloudwatch, Kinesis, VPC Flow logs, S3, security-hub and AWS Inspector

Code examples for the AWS Security Blog post: How to use CI/CD to deploy and configure AWS security services with Terraform

Advanced AWS Security Automation Resources: Used by Udemy Course 🎓

Proof of Value Terraform Scripts to utilize Amazon Web Services (AWS) Security, Identity & Compliance Services to Support your AWS Account Security Posture.

Configure and deploy AWS Security Hub.

control-controls control controls of AWS Security Hub across all regions.

AWS Security Hub automatic suppression rules

AWS native Static Application Security Testing (SAST) utility to find and eradicate vulnerable software packages stored in AWS CodeArtifact. Built for both real-time distributed and centralized deployments.

AWS Fargate and Prowler to send AWS service security configuration findings to Security Hub to Automate Compliance Checks for AWS CIS Benchmarks

An AWS Security Hub Custom Findings provider, using the Have I Been Pwned API

Analyse database activity with Aurora Database Activity Streams and send findings to Security Hub

Terraform module to update AWS securityhub findings such as suppressions

🛡️ Terraform module to provision multi-region AWS cloud security controls

An AWS Security Hub Custom Findings provider, using the Have I Been Pwned API

AWS Organization baseline configuration

Configure and deploy AWS Security Hub.

Local-first AWS cloud security scanner for IAM, CloudTrail, GuardDuty, Access Analyzer, MITRE ATT&CK, SARIF, ASFF, OCSF, and least-privilege review.

Scan your AWS account against all 40 CIS Foundations Benchmark v5.0.0 controls and get an HTML dashboard, JSON, and CSV report with remediation steps — no Security Hub needed.

A production-grade Cloud Security Posture Management (CSPM) platform built with Terraform and Python. Aggregates findings from all native AWS security services into Security Hub, routes them with EventBridge, notifies via SNS and Slack, auto-remediates common findings with Lambda, and integrates with external SIEM, SOAR, and XDR platforms.