My arsenal of AWS security tools

I’ve been using and collecting a list of helpful tools for AWS security. This list is about the ones that I have tried at least once and I think they are good to look at for your own benefit and most important: to make your AWS cloud environment more secure.

They are not in any specific order, I just wanted to group them somehow. I have my favorites depending on the requirements but you can also have yours once you test them.

Feel free to send a pull request for improvements or add more tools (open source only in this list) here:

New additions at


Defensive (Hardening, Security Assessment, Inventory)


Continuous Security Auditing:


Development Security:

S3 Buckets Auditing:



6 thoughts to “My arsenal of AWS security tools”

  1. Thanks for sharing the awesome list !
    However all the links seems wrong 🙁 redirect 404

  2. Great work! Can you please let me know if there is a way to analyze the inbound logs of our VPC flowlogs and compare them with existing IP addresses of our EC2 instance fleet and alert us if there is a suspected intrusions or exfiltrations. Thank you!

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.