Ecosyste.ms: OpenCollective
An open API service for software projects hosted on Open Collective.
github.com/mozilla/security
Repository for various tools around security
https://github.com/mozilla/security
Adding SNS user and removing deprecated CloudFormation templates
gene1wood opened this pull request 6 months ago
gene1wood opened this pull request 6 months ago
Update Deprecated Security Roles
mluzilla opened this pull request about 1 year ago
mluzilla opened this pull request about 1 year ago
Add a few more permissions to the new cloudformation stack emission reader
gene1wood opened this pull request over 1 year ago
gene1wood opened this pull request over 1 year ago
Add CloudFormation template for CloudFormation Stack Emission reader role
gene1wood opened this pull request over 1 year ago
gene1wood opened this pull request over 1 year ago
Update security audit roles to use managed security audit policy
gene1wood opened this pull request over 1 year ago
gene1wood opened this pull request over 1 year ago
Create LICENSE
gene1wood opened this pull request about 2 years ago
gene1wood opened this pull request about 2 years ago
Add new infosec-prod CloudTrail reader role and remove old MozDef role
gene1wood opened this pull request over 2 years ago
gene1wood opened this pull request over 2 years ago
Grant Mozdef CloudTrail reader rights to list objects
gene1wood opened this pull request over 2 years ago
gene1wood opened this pull request over 2 years ago
Update AWS Lambda Python runtime for custom CloudFormation resource
gene1wood opened this pull request over 2 years ago
gene1wood opened this pull request over 2 years ago
Fix missing permissions in MFA policy
gene1wood opened this pull request over 2 years ago
gene1wood opened this pull request over 2 years ago
Add template for infosec-trusted incident responders user group
gene1wood opened this pull request over 2 years ago
gene1wood opened this pull request over 2 years ago
Expand security auditor role to be able to query for more Arns
gene1wood opened this pull request over 2 years ago
gene1wood opened this pull request over 2 years ago
chore(python): Upgrade python lambdas to support lambda runtime
bkochendorfer opened this pull request over 2 years ago
bkochendorfer opened this pull request over 2 years ago
Update CloudFormation OIDC Identity Provide custom resource
gene1wood opened this pull request about 3 years ago
gene1wood opened this pull request about 3 years ago
Remove templates that are no longer in use
gene1wood opened this pull request about 3 years ago
gene1wood opened this pull request about 3 years ago
Grant secops-aws-admins rights to infosec-prod and infosec-dev
gene1wood opened this pull request over 3 years ago
gene1wood opened this pull request over 3 years ago
Remove old unfederated IAM roles
gene1wood opened this pull request over 3 years ago
gene1wood opened this pull request over 3 years ago
Permit security auditing infosec-prod
gene1wood opened this pull request almost 4 years ago
gene1wood opened this pull request almost 4 years ago
Change from permission boundaries to restricting the resource
gene1wood opened this pull request almost 4 years ago
gene1wood opened this pull request almost 4 years ago
Allow passing multiple groups to CloudTrail reader template
gene1wood opened this pull request almost 4 years ago
gene1wood opened this pull request almost 4 years ago
Split role templates for dev and prod. Add GuardDuty reader role
gene1wood opened this pull request almost 4 years ago
gene1wood opened this pull request almost 4 years ago
Adding Security Auditor role
gene1wood opened this pull request almost 4 years ago
gene1wood opened this pull request almost 4 years ago
Remove reference to mozdef-prod-es2-backups which is no longer used
gene1wood opened this pull request almost 4 years ago
gene1wood opened this pull request almost 4 years ago
Update CloudFormation template metadata "Source" field to point directly to the template's GitHub location
gene1wood opened this issue over 4 years ago
gene1wood opened this issue over 4 years ago
Extend Security Audit role
gene1wood opened this issue over 4 years ago
gene1wood opened this issue over 4 years ago
Create replacement IAM role for MozDef to read CloudTrail logs
gene1wood opened this pull request over 4 years ago
gene1wood opened this pull request over 4 years ago
Update infosec-isolated roles to access CloudTrail logs
gene1wood opened this pull request over 4 years ago
gene1wood opened this pull request over 4 years ago
Update infosec-prod AWS SSO roles to grant Florian Merz read access
gene1wood opened this pull request over 4 years ago
gene1wood opened this pull request over 4 years ago
Add IAM PenTest role
gene1wood opened this pull request almost 5 years ago
gene1wood opened this pull request almost 5 years ago
Update README with links to hosted CloudFormation template
gene1wood opened this pull request about 5 years ago
gene1wood opened this pull request about 5 years ago
Fix bug in OIDC identity provider custom resource during update
gene1wood opened this pull request about 5 years ago
gene1wood opened this pull request about 5 years ago
OIDC Identity Provider CloudFormation custom resource error on update
gene1wood opened this issue about 5 years ago
gene1wood opened this issue about 5 years ago
Correct federated roles description
gene1wood opened this pull request about 5 years ago
gene1wood opened this pull request about 5 years ago
Add view only role to default OIDC federated roles
gene1wood opened this pull request about 5 years ago
gene1wood opened this pull request about 5 years ago
Change default AWS OIDC role names
gene1wood opened this pull request about 5 years ago
gene1wood opened this pull request about 5 years ago
Remove federated rp bucket which is no longer needed
gene1wood opened this pull request about 5 years ago
gene1wood opened this pull request about 5 years ago
Add mozilla-iam account S3 buckets
gene1wood opened this pull request about 5 years ago
gene1wood opened this pull request about 5 years ago
Add default federated IAM Roles
gene1wood opened this pull request about 5 years ago
gene1wood opened this pull request about 5 years ago
Add Cloud Services org reader role
gene1wood opened this pull request about 5 years ago
gene1wood opened this pull request about 5 years ago
Update S3 bucket CloudFormation templates to add AWS Federated RP buckets
gene1wood opened this pull request about 5 years ago
gene1wood opened this pull request about 5 years ago
Remove our original version of the template which doesn't use crhelper
gene1wood opened this pull request about 5 years ago
gene1wood opened this pull request about 5 years ago
Add template to enable API Gateway logging to CloudWatch
gene1wood opened this pull request over 5 years ago
gene1wood opened this pull request over 5 years ago
Add documentation for using a pre-baked template and hosted Lambda code
gene1wood opened this pull request over 5 years ago
gene1wood opened this pull request over 5 years ago
Add OIDC identity provider CloudFormation template
gene1wood opened this pull request over 5 years ago
gene1wood opened this pull request over 5 years ago
Add OIDC identity provider
gene1wood opened this pull request over 5 years ago
gene1wood opened this pull request over 5 years ago
Add clean_security_roles tool
gene1wood opened this pull request over 5 years ago
gene1wood opened this pull request over 5 years ago
Add new dev S3 bucket for Auth0 rule assets
gene1wood opened this pull request over 5 years ago
gene1wood opened this pull request over 5 years ago
Add mozilla-infosec-auth0-rule-assets bucket
gene1wood opened this pull request over 5 years ago
gene1wood opened this pull request over 5 years ago
Add public unlisted S3 bucket and update public buckets
gene1wood opened this pull request over 5 years ago
gene1wood opened this pull request over 5 years ago
Add Mozilla Code of Conduct
Mozilla-GitHub-Standards opened this pull request almost 6 years ago
Mozilla-GitHub-Standards opened this pull request almost 6 years ago
CODE_OF_CONDUCT.md file missing
Mozilla-GitHub-Standards opened this issue almost 6 years ago
Mozilla-GitHub-Standards opened this issue almost 6 years ago
Update org reader role
gene1wood opened this pull request almost 6 years ago
gene1wood opened this pull request almost 6 years ago
Remove mozdef-prod user's rights to assume security audit roles
gene1wood opened this pull request almost 6 years ago
gene1wood opened this pull request almost 6 years ago
Update org reader policy and remove infosec-public-data bucket
gene1wood opened this pull request almost 6 years ago
gene1wood opened this pull request almost 6 years ago
Rename the malware detonation role since it's actually generic
gene1wood opened this pull request almost 6 years ago
gene1wood opened this pull request almost 6 years ago
Wiki changes
moz-hwine opened this issue almost 6 years ago
moz-hwine opened this issue almost 6 years ago
Add templates
gene1wood opened this pull request almost 6 years ago
gene1wood opened this pull request almost 6 years ago
Fix IAM Role path typo
gene1wood opened this pull request almost 6 years ago
gene1wood opened this pull request almost 6 years ago
Fix scary rules roles typo
gene1wood opened this pull request almost 6 years ago
gene1wood opened this pull request almost 6 years ago
Update readme
gene1wood opened this pull request almost 6 years ago
gene1wood opened this pull request almost 6 years ago
Update s3 bucket templates
gene1wood opened this pull request almost 6 years ago
gene1wood opened this pull request almost 6 years ago
Various unpushed additions and changes
gene1wood opened this pull request almost 6 years ago
gene1wood opened this pull request almost 6 years ago
AWS security refresh
gene1wood opened this pull request about 6 years ago
gene1wood opened this pull request about 6 years ago
Add region constraints and change SNS topic ARN relative to local region
gene1wood opened this pull request about 6 years ago
gene1wood opened this pull request about 6 years ago
Add Mozilla specific GuardDuty member role
gene1wood opened this pull request about 6 years ago
gene1wood opened this pull request about 6 years ago
add temporary dinopark roles expiring january 1
andrewkrug opened this pull request about 6 years ago
andrewkrug opened this pull request about 6 years ago
Fix CloudTrail SQS queue name typo
gene1wood opened this pull request about 6 years ago
gene1wood opened this pull request about 6 years ago
Add initial plan for GuardDuty deployment
gene1wood opened this pull request over 6 years ago
gene1wood opened this pull request over 6 years ago
Additional permissions needed for security audit role
gene1wood opened this issue about 7 years ago
gene1wood opened this issue about 7 years ago
Add A record for Prometheus instance
ameihm0912 opened this pull request over 7 years ago
ameihm0912 opened this pull request over 7 years ago
Add mozdef cloudtrail sqs template
pwnbus opened this pull request over 7 years ago
pwnbus opened this pull request over 7 years ago
add mig sqs resource to mozdef user configuration
ameihm0912 opened this pull request almost 8 years ago
ameihm0912 opened this pull request almost 8 years ago
publish_to_sns fails when region of CloudFormation stack differs from region of SNS Topic
gene1wood opened this issue about 9 years ago
gene1wood opened this issue about 9 years ago
Fix the SNS configuration for deploy_cloudtrail_cloudformations
gene1wood opened this issue over 9 years ago
gene1wood opened this issue over 9 years ago
Add CloudFormation stack self destruct to deploy_cloudtrail_cloudformations
gene1wood opened this issue over 9 years ago
gene1wood opened this issue over 9 years ago
ipquery fails if one of it's AssumeRole accounts no longer permits it to AssumeRole
gene1wood opened this issue over 9 years ago
gene1wood opened this issue over 9 years ago
I enabled a clear cache function on the live deployment of ipquery
gene1wood opened this issue over 9 years ago
gene1wood opened this issue over 9 years ago
Use async call in ipquery to get results
gene1wood opened this issue over 9 years ago
gene1wood opened this issue over 9 years ago
Enable API access to ipquery
gene1wood opened this issue over 9 years ago
gene1wood opened this issue over 9 years ago
Adding opsec security auditor
gene1wood opened this pull request almost 10 years ago
gene1wood opened this pull request almost 10 years ago