Open Source Projects

Scalesec Vault Assistant

Vault assistant is a quick and easy way to install, configure and run Hashicorp Vault. It provides a dock application to start; stop; seal; unseal and other support functions.

Customization with Vault Extensions

Customization with Vault Extensions

ScaleSec Contributors:

Primary language:

  • Shell

Additional details


Scalesec Secret Store

Vault Custom Plugin example showing how to create a custom secret store backend. Can be used a framework or starting point to help jumpstart a development effort.

ScaleSec Secret Store

ScaleSec Secret Store

ScaleSec Contributors:

Primary language:

  • Shell

Additional details


Scalesec GCP Workload Identity Federation

This repository contains a python module that allows users to access GCP from AWS without the use of static credentials (aka GCP service account keys). This module can be imported into any python script and leveraged to generate an ephemeral GCP service account access token.

Access GCP from AWS using Workload Identity Federation

Access GCP from AWS using Workload Identity Federation

ScaleSec Contributors:

Primary language:

  • Python

Additional details


Scalesec Project Lockdown

Project Lockdown is a collection of serverless event-driven auto remediation Cloud Functions designed to react to unsecure resource creations or configurations. Project Lockdown is meant to be deployed in a GCP environment and has the capabilities to monitor and remediate across your entire Organization hierarchy in a matter of seconds.

ScaleSec Contributors:

Primary language:

  • Python

Additional details

Project Lockdown

Project Lockdown


GCP Organization Policy Bot

This is a 100% serverless tool that analyzes GCP Organization Policies for updates and then posts to a Slack channel as well as Twitter via our Twitter bot.

GCP Organization Policy Notifier

GCP Organization Policy Notifier

ScaleSec Contributors:

Primary language:

  • Python

Additional details


Scalesec Terraform AWS Service Control Policy Suite

This repo is a collection of AWS Service Control Policies (SCPs) written in Hashicorp Terraform to be used in AWS Organizations.

ScaleSec Contributors:

Primary language:

  • Hashicorp Configuration Language (HCL)

Additional details

Using Terraform to Secure Your AWS Organizations

Using Terraform to Secure Your AWS Organizations


GCP Unused Service Account Lister

Crawls your GCP Organization and returns service accounts that have not been used in the past 90 days based on GCP Recommender Service Account Insight findings.

Identify Unused Service Accounts in GCP

Identify Unused Service Accounts in GCP

ScaleSec Contributors:

Primary language:

  • Python

Additional details


GCP API Key Lister

This script will inventory your entire GCP Organization’s API keys and create two files: key_dump.json and keys.csv. You can read the blog related to this repository here.

ScaleSec Contributors:

Primary language:

  • Python

Additional details

Inventory Your GCP API Keys

Inventory Your GCP API Keys


GCP Event Threat Detection Remediator

The Terraform module and Cloud Function is used to demonstrate the concepts discussed in this Article. This repo contains all you need to begin automating remediations for Event Threat Detection findings.

Automate Security on GCP with Event Threat Detection

Automate Security on GCP with Event Threat Detection

ScaleSec Contributors:

Primary language:

  • Python

Additional details



Here for you

Have questions? Leverage our expertise to help you meet your business goals with a strong security posture.

Join us

ScaleSec is a well-connected, fully remote team. We thrive in the great undocumented beyond. We’re hiring in most US metros.

Get in touch

Considering cloud? Want to optimize and transform your existing digital portfolio?
Reach out to us.

Gap Assessment

Get perspective. Address security comprehensively.

Prepare for compliance.

ScaleSec
San Diego, CA 92120, United States

619-SCALE15

© 2022 ScaleSec. All rights reserved. | Privacy Policy