@Daren has joined the channel
PacBot by T-Mobile for compliance monitoring - potentially useful? Quite heavy weight though, what with Redshift as one of the dependencies. https://github.com/tmobile/pacbot
PacBot (Policy as Code Bot). Contribute to tmobile/pacbot development by creating an account on GitHub.
not quite as comprehensive but another similar project i was looking at last year: https://github.com/capitalone/cloud-custodian
Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources - capitalone/cloud-custodian
a bunch of other security stuff
22 AWS security experts provide insights into important, yet often overlooked AWS security metrics by answering this question:
Keeps baking security into code creation for cloud.
Leading source of Security Tools, Hacking Tools, CyberSecurity and Network Security
At Black Hat 2018 in Las Vegas, Netflix security engineer William Bengtson explained how his company monitors AWS credentials and introduced a new open source tool, called Trailblazer.
The new tool, called Hammer, was developed partly in response to the growing need for automation amid talent shortages and the fast-paced nature of software development, said Dow Jones CISO Jaswinder Hayre.
@antonbabenko from the horses mouth: kms-based auto unsealing for vault getting released to open source
@antonbabenko has joined the channel
Looks like your dream of simplifying module will be made easier
Yes, this sounds like what I have meant. Where did you see it? URL?
Thanks everyone for bunch of security links!
(Meetup today / presenter was from hashicorp)
Expect announcement at hashiconf
Ahh, I thought it is there already. Yes, I know, there will be few exciting things announced there. Looking forward to it
@Gabe - of course you’re already here
it’s where i saw pacbot
@endofcake have you used it?
Ohhh… didn’t realize it was that new
@samh has joined the channel