prowler: AWS Security Best Practices Assessment, Auditing, Hardening and Forensics Readiness Tool. It follows guidelines of the CIS Amazon Web Services Foundations Benchmark and DOZENS of additional checks including GDPR and HIPAA (+90).
cloudfrunt: A tool for identifying misconfigured CloudFront domains
mad-king: Proof of Concept Zappa Based AWS Persistence and Attack Platform
cloud-nuke: A tool for cleaning up your cloud accounts by nuking (deleting) all resources within it
cloud-service-enum - These script allows pentesters to validate which cloud tokens (API keys, OAuth tokens and more) can access which cloud service.
streamalert: StreamAlert is a serverless, realtime data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using datasources and alerting logic you define.
security_monkey: Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.