Q: What is asecurecloud?

AWS provides an amazing set of security controls and configuration options. However, it is sometimes difficult to keep up with all the options available, especially at the rate of new features and contributions from AWS and the community. Therefore asecurecloud was created to:
  1. Provide a central repository for the various security configurations recommended by AWS through native features, AWS open source repos and blog posts, as well as community contributions. 
  2. Easily create deployment templates based on the available configuration items, in any combination.

Q: Are there any costs?

asecurecloud is free. All solutions listed are free, and you are only charged for the AWS resources used to deploy them.

Q: How to use asecurecloud?

The home page lists different categories for grouping the configuration items. Each item has a description, and a link to the source as well as steps for deployment.

Multiple configuration items can be combined into a deployment stack. Deployment stacks include cloudformation templates and AWS CLI commands for automated deployment. 

Q: What are the available deployment options?

Each configuration item (or artifact) has three deployment options included:
  1. Cloudformation
  2. AWS CLI
  3. Terraform

Q: What is a deployment stack?

Most likely, you will be deploying more than one configuration item at a time. A deployment stack helps you combine multiple items together to create one deployment template through cloudformation or AWS CLI.

Q: How does the Launch in AWS Account feature work?

The feature works by uploading a temporary copy of the generated CloudFormation template to an S3 bucket. The generated template is only kept temporarily to allow you to launch the stack. You can still use the stack once its deployed in your AWS account after the copy has been deleted.