├── .github └── workflows │ ├── index_files.py │ ├── sync-to-prod.yaml │ └── sync-to-test.yaml ├── .gitignore ├── AccountAlertTopics.md ├── LICENSE ├── Links.md ├── Makefile ├── README.md ├── Test-Links.md ├── billing-metrics-lambda ├── cost.py └── metrics.py ├── cloudformation ├── AWSCloudFormationStackSetRoles-Template.yaml ├── AWSConfigBucket-Template.yaml ├── AWSConfigRecorder-StackSetTemplate.yaml ├── AWSConfigRecorder-Template.yaml ├── AccessAnalyzerAlert-StackSetTemplate.yaml ├── AccessAnalyzerAlert-Template.yaml ├── AccountAlertTopics-Template.yaml ├── AdvancedEventSelectorsDataTrail-Template.yaml ├── AuditRole-Template.yaml ├── BillingBucket-Template.yaml ├── BillingMetrics-Template.yaml ├── CloudTrail-Template.yaml ├── CloudTrailConfigBucket-Template.yaml ├── CloudWatchAlarmsForCloudTrailAPIActivity-Template.yaml ├── CostExplorerAlerts-Template.yaml ├── EBSAutomatedTagging.yaml ├── GuardDuty-Canary-Template.yaml ├── GuardDuty-to-Slack-StackSetTemplate.yaml ├── GuardDuty-to-Slack-Template.yaml ├── GuardDutyFindingsBucket-Template.yaml ├── IAM-ExpireUsers-Template.yaml ├── MacieFindingsBucket-Template.yaml ├── OrgCloudTrail-Template.yaml ├── OrgCloudTrailBucket-Template.yaml ├── ResponderRole-Template.yaml ├── SESRuleToSlack-Template.yaml ├── SecurityAlertChatBot-Template.yaml ├── SecurityRole-StackSetTemplate.yaml ├── VPCFlowLogBucket-Template.yaml └── requireMFA-Template.yaml ├── lambda ├── ExpireUsers.py ├── requireMFA.py ├── ses-to-slack.py └── tag_ebs.py ├── sample-events └── requireMFA │ ├── CreateLoginProfile.json │ ├── DeactivateMFADevice.json │ └── EnableMFADevice.json ├── scripts ├── configure_guardduty_admin_account.sh ├── configure_inspector_admin_account.sh ├── deploy_guardduty_to_slack.sh ├── enable_delegated_admin_for_config.sh ├── enable_guardduty_delegation.sh ├── enable_inspector_delegation.sh └── nuke-securityhub.py └── terraform └── EBSAutomatedTagging └── main.tf /.github/workflows/index_files.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/.github/workflows/index_files.py -------------------------------------------------------------------------------- /.github/workflows/sync-to-prod.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/.github/workflows/sync-to-prod.yaml -------------------------------------------------------------------------------- /.github/workflows/sync-to-test.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/.github/workflows/sync-to-test.yaml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/.gitignore -------------------------------------------------------------------------------- /AccountAlertTopics.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/AccountAlertTopics.md -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/LICENSE -------------------------------------------------------------------------------- /Links.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/Links.md -------------------------------------------------------------------------------- /Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/Makefile -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/README.md -------------------------------------------------------------------------------- /Test-Links.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/Test-Links.md -------------------------------------------------------------------------------- /billing-metrics-lambda/cost.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/billing-metrics-lambda/cost.py -------------------------------------------------------------------------------- /billing-metrics-lambda/metrics.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/billing-metrics-lambda/metrics.py -------------------------------------------------------------------------------- /cloudformation/AWSCloudFormationStackSetRoles-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/AWSCloudFormationStackSetRoles-Template.yaml -------------------------------------------------------------------------------- /cloudformation/AWSConfigBucket-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/AWSConfigBucket-Template.yaml -------------------------------------------------------------------------------- /cloudformation/AWSConfigRecorder-StackSetTemplate.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/AWSConfigRecorder-StackSetTemplate.yaml -------------------------------------------------------------------------------- /cloudformation/AWSConfigRecorder-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/AWSConfigRecorder-Template.yaml -------------------------------------------------------------------------------- /cloudformation/AccessAnalyzerAlert-StackSetTemplate.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/AccessAnalyzerAlert-StackSetTemplate.yaml -------------------------------------------------------------------------------- /cloudformation/AccessAnalyzerAlert-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/AccessAnalyzerAlert-Template.yaml -------------------------------------------------------------------------------- /cloudformation/AccountAlertTopics-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/AccountAlertTopics-Template.yaml -------------------------------------------------------------------------------- /cloudformation/AdvancedEventSelectorsDataTrail-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/AdvancedEventSelectorsDataTrail-Template.yaml -------------------------------------------------------------------------------- /cloudformation/AuditRole-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/AuditRole-Template.yaml -------------------------------------------------------------------------------- /cloudformation/BillingBucket-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/BillingBucket-Template.yaml -------------------------------------------------------------------------------- /cloudformation/BillingMetrics-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/BillingMetrics-Template.yaml -------------------------------------------------------------------------------- /cloudformation/CloudTrail-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/CloudTrail-Template.yaml -------------------------------------------------------------------------------- /cloudformation/CloudTrailConfigBucket-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/CloudTrailConfigBucket-Template.yaml -------------------------------------------------------------------------------- /cloudformation/CloudWatchAlarmsForCloudTrailAPIActivity-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/CloudWatchAlarmsForCloudTrailAPIActivity-Template.yaml -------------------------------------------------------------------------------- /cloudformation/CostExplorerAlerts-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/CostExplorerAlerts-Template.yaml -------------------------------------------------------------------------------- /cloudformation/EBSAutomatedTagging.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/EBSAutomatedTagging.yaml -------------------------------------------------------------------------------- /cloudformation/GuardDuty-Canary-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/GuardDuty-Canary-Template.yaml -------------------------------------------------------------------------------- /cloudformation/GuardDuty-to-Slack-StackSetTemplate.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/GuardDuty-to-Slack-StackSetTemplate.yaml -------------------------------------------------------------------------------- /cloudformation/GuardDuty-to-Slack-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/GuardDuty-to-Slack-Template.yaml -------------------------------------------------------------------------------- /cloudformation/GuardDutyFindingsBucket-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/GuardDutyFindingsBucket-Template.yaml -------------------------------------------------------------------------------- /cloudformation/IAM-ExpireUsers-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/IAM-ExpireUsers-Template.yaml -------------------------------------------------------------------------------- /cloudformation/MacieFindingsBucket-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/MacieFindingsBucket-Template.yaml -------------------------------------------------------------------------------- /cloudformation/OrgCloudTrail-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/OrgCloudTrail-Template.yaml -------------------------------------------------------------------------------- /cloudformation/OrgCloudTrailBucket-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/OrgCloudTrailBucket-Template.yaml -------------------------------------------------------------------------------- /cloudformation/ResponderRole-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/ResponderRole-Template.yaml -------------------------------------------------------------------------------- /cloudformation/SESRuleToSlack-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/SESRuleToSlack-Template.yaml -------------------------------------------------------------------------------- /cloudformation/SecurityAlertChatBot-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/SecurityAlertChatBot-Template.yaml -------------------------------------------------------------------------------- /cloudformation/SecurityRole-StackSetTemplate.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/SecurityRole-StackSetTemplate.yaml -------------------------------------------------------------------------------- /cloudformation/VPCFlowLogBucket-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/VPCFlowLogBucket-Template.yaml -------------------------------------------------------------------------------- /cloudformation/requireMFA-Template.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/cloudformation/requireMFA-Template.yaml -------------------------------------------------------------------------------- /lambda/ExpireUsers.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/lambda/ExpireUsers.py -------------------------------------------------------------------------------- /lambda/requireMFA.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/lambda/requireMFA.py -------------------------------------------------------------------------------- /lambda/ses-to-slack.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/lambda/ses-to-slack.py -------------------------------------------------------------------------------- /lambda/tag_ebs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/lambda/tag_ebs.py -------------------------------------------------------------------------------- /sample-events/requireMFA/CreateLoginProfile.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/sample-events/requireMFA/CreateLoginProfile.json -------------------------------------------------------------------------------- /sample-events/requireMFA/DeactivateMFADevice.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/sample-events/requireMFA/DeactivateMFADevice.json -------------------------------------------------------------------------------- /sample-events/requireMFA/EnableMFADevice.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/sample-events/requireMFA/EnableMFADevice.json -------------------------------------------------------------------------------- /scripts/configure_guardduty_admin_account.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/scripts/configure_guardduty_admin_account.sh -------------------------------------------------------------------------------- /scripts/configure_inspector_admin_account.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/scripts/configure_inspector_admin_account.sh -------------------------------------------------------------------------------- /scripts/deploy_guardduty_to_slack.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/scripts/deploy_guardduty_to_slack.sh -------------------------------------------------------------------------------- /scripts/enable_delegated_admin_for_config.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/scripts/enable_delegated_admin_for_config.sh -------------------------------------------------------------------------------- /scripts/enable_guardduty_delegation.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/scripts/enable_guardduty_delegation.sh -------------------------------------------------------------------------------- /scripts/enable_inspector_delegation.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/scripts/enable_inspector_delegation.sh -------------------------------------------------------------------------------- /scripts/nuke-securityhub.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/scripts/nuke-securityhub.py -------------------------------------------------------------------------------- /terraform/EBSAutomatedTagging/main.tf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/primeharbor/aws-account-automation/HEAD/terraform/EBSAutomatedTagging/main.tf --------------------------------------------------------------------------------