Security offerings for AWS Control Tower

Last update: Oct 22, 2021

Overview

Caylent Security Catalyst Reference Architecture Examples

This repository contains solutions for Caylent's Security Catalyst. The Security Catalyst is an additional offering to our customized AWS Control Tower Solution. This Security Solutions will help your organization deploy AWS security-related services in a multi-account environment following patterns that align with the AWS Security Reference Architecture.

The resources created in these solutions have IAM roles and policies that following the practice of least priveledge. They will need to be modified to suit your organization's needs.

The examples within this repository have been deployed and tested using the corresponding deployment platform (e.g. AWS Control Tower and AWS CloudFormation StackSets).

Security Catalyst Example Solutions

CloudTrail
- Organization CloudTrail
Config
Firewall Manager
- Organization Firewall Manager
GuardDuty
- Organization GuardDuty
IAM
- Access Analyzer
- Account Password Policy
Macie
- Organization Macie
SecurityHub
- Account SecurityHub Enabler

Extras

Prerequisites for AWS Control Tower solutions
packaging-scripts
- package-lambda.sh (Creates the Lambda zip file and uploads to an S3 bucket)

Repository and Solution Naming Convention

The repository is organized by AWS service solutions, which include deployment platforms (e.g., AWS Control Tower and AWS CloudFormation StackSet).

Example:

.
|-- solutions
    |-- guardduty
        |-- guardduty-org
            |-- aws-control-tower/
                |-- parameters/
                |-- manifest.yaml
           |-- code/src/
               |-- app.py
               |-- requirements.txt
           |-- templates/
               |-- guardduty-org-configuration.yaml
               |-- ...
    |-- ...

The example solutions within this repository can be managed/deployed to accounts using AWS Organizations or directly within individual accounts. The suffix on the solution name identifies how the solution is managed/deployed.

Solution Suffix	Description
acct	The solution is managed/deployed within each account
org	The solution is managed/deployed to accounts via AWS Organizations
ou	The solution is managed/deployed to accounts via Organization Units

Author

Caylent Inc.

Security offerings for AWS Control Tower

Related tags

Overview

Caylent Security Catalyst Reference Architecture Examples

Security Catalyst Example Solutions

Extras

Repository and Solution Naming Convention

Author

Owner

Steven Connolly

Python sandbox runners for executing code in isolation aka snekbox.

Trainspotting - Python Dependency Injector based on interface binding

Course: Information Security with Python

Log4j rce test environment and poc

Uses Sharphound, Bloodhound and Neo4j to produce an actionable list of attack paths for targeted remediation.

A fast tool to scan prototype pollution vulnerability

Scanning for CVE-2021-44228

Rapidly enumerate subdomains and domains using rapiddns.io.

Send CVE information to the specified mailbox (from Github)

This respository contains the source code of the printjack and phonejack attacks.

POC for CVE-2022-1388

PoC for CVE-2021-26855 -Just a checker-

This project is for finding a solution to use Security Onion Elastic data with Jupyter Notebooks.

Repository for a project of the course EP2520 Building Networked Systems Security

Script Crack Facebook Elite 🚶‍♂

"Video Moment Retrieval from Text Queries via Single Frame Annotation" in SIGIR 2022.

A Tool to find subdomains from hackerone reports.

Tool-X is a kali linux hacking Tool installer.

CTF framework and exploit development library

DomainMonitor is a web project that has a RESTful API to get a domain's subdomains and whois data.