cloud-security

There are 46 repositories under cloud-security topic.

• wazuh / wazuh

  Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

  cloud-securitycomplianceconfiguration-assessementcontainer-securitycybersecurityfile-integrity-monitoringincident-responseinfoseclog-analysismalware-detectionpci-dsssecuritysecurity-auditsecurity-automationsecurity-hardeningsecurity-toolssiemvulnerability-detectionwazuhxdr
  Language:C 9334
• terrascan

  tenable / terrascan

  Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

  architectureawsaws-securityazure-securitycloud-securitycloudsecuritydevopsdevsecopsgcp-securityiacinfrastructureinfrastructure-as-codekubernetessastscanssecuritysecurity-toolssecurity-violationsterraformterrascan
  Language:Go 4531

• Hack-with-Github / Free-Security-eBooks

  Free Security and Hacking eBooks

  securityhackingpenetration-testinghacking-ebooksforensicshackers-handbookcloud-securitykali-linuxcyber-securityebooks
  4155
• kubernetes-goat

  madhuakula / kubernetes-goat

  Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

  blueteamcloud-nativecloud-securitycloudsecuritycontainercontainer-securitydevsecopsdockerhackinginfrastructurek8skuberneteskubernetes-goatkubernetes-securityowasppentestingredteamsecurityvulnerable-app
  Language:HTML 4000

• Netflix / consoleme

  A Central Control Plane for AWS Permissions and Access

  aws-iamawssecurity-toolscloud-security
  Language:Python 3071

• 4ndersonLin / awesome-cloud-security

  🛡️ Awesome Cloud Security Resources ⚔️

  awsaws-securityazureazure-securitycloud-computingcloud-securitycybersecuritygcpgcp-securitysecurity
  1921

• salesforce / cloudsplaining

  Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.

  awsaws-iamcloudsecuritysalesforceaws-securitycloud-securityiamhacktoberfest
  Language:JavaScript 1870
• cloudfox

  BishopFox / cloudfox

  Automating situational awareness for cloud penetration tests.

  awscloudcloud-securitygolangpenetration-testing-toolssecurity
  Language:Go 1809

• DataDog / stratus-red-team

  :cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud

  adversary-emulationawsaws-securityazure-securitycloud-native-securitycloud-securitydetection-engineeringgcp-securitykubernetes-securitymitre-attackpurple-teamsecuritythreat-detection
  Language:Go 1630

• teamssix / awesome-cloud-security

  awesome cloud security 收集一些国内外不错的云安全资源，该项目主要面向国内的安全人员

  awesomeawesome-cloud-securitycloud-nativecloud-securitycloudnativecloudsecuritycybersecuritydockerkubernetestools
  1601
• hackingthe.cloud

  Hacking-the-Cloud / hackingthe.cloud

  An encyclopedia for offensive and defensive security knowledge in cloud native technologies.

  hackingawshacking-cloudazuregcppenetration-testingcloudcloud-securityaws-hacking
  Language:Dockerfile 1527

• chaitin / veinmind-tools

  veinmind-tools 是由长亭科技自研，基于 veinmind-sdk 打造的容器安全工具集

  dockersecurityimage-securitycontainerdcontainer-securitycloud-nativecloud-security
  Language:Go 1474
• matano

  matanolabs / matano

  Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS

  awscloudsecuritybig-dataserverlessapache-iceberglog-analyticslog-managementthreat-huntingrustalertingcloud-nativeaws-securitycloud-securitycybersecuritysecopssecurity-toolsdfirdetection-engineeringsiem
  Language:Rust 1363
• pacbot

  tmobile / pacbot

  PacBot (Policy as Code Bot)

  angularjsawsaws-securitycloudcloud-auditingcloud-compliance-reportingcloud-nativecloud-securitycontinous-compliancejavapolicy-as-codesecuritysecurity-automationspring-boot
  Language:Java 1267

• SecurityFTW / cs-suite

  Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.

  aws-securitysecurity-auditcloud-securitygcp-audit-reportgcpaws-auditsecurityazure-securityazureazure-auditsecurity-tools
  Language:Shell 1131
• awesome-aws-security

  jassics / awesome-aws-security

  Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security

  cloud-securityaws-securityawesome-listawssecuritysecurity-toolsaws-auditingawesome-listsaws-security-resourcesawesomeaws-security-automation
  1124

• bridgecrewio / terragoat

  TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.

  terraformaws-securitycloud-securitygoatazure-securitygcp-securitydevsecops
  Language:HCL 1104
• paralus

  paralus / paralus

  All-in-one Kubernetes access manager. User-level credentials, RBAC, SSO, audit logs.

  access-managementcloud-securityk8s-access-managementkubernetes-securityzero-trust-securityztka
  Language:Go 937

• common-fate / granted

  The easiest way to access your cloud.

  iamawscloudssocredentialskeychaincloud-securityhacktoberfest
  Language:Go 918
• constellation

  edgelesssys / constellation

  Constellation is the first Confidential Kubernetes. Constellation shields entire Kubernetes clusters from the (cloud) infrastructure using confidential computing.

  cloud-securityconfidential-computingdata-encryptionkuberneteskubernetes-security
  Language:Go 874
• ElectricEye

  jonrau1 / ElectricEye

  ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks

  security-toolssecurity-auditcloud-securitysecurity-monitoringaws-securitysecurity-hubcloud-compliance-reportingcloud-auditingsecurity-engineeringdevsecopsaws-auditaws-compliancecomplianceattack-surface-managementawsgcp-securitymulticloudsaas-securitygoogle-cloud-securityasset-management
  Language:Python 867

• cyberark / SkyArk

  SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS

  adminsattackerawsazurecloudcloud-securitypowershellprivilegessecurity-toolsthreat
  Language:PowerShell 853

• Zeyad-Azima / Offensive-Resources

  A Huge Learning Resources with Labs For Offensive Security Players

  apiinfrastructurelearningsecuritymobilewebhackhackingowaspcybersecurityweb-securitymobile-securityoffensiveoffensive-securityred-teamowasp-top-10redteamcloud-securityapi-securityred-teaming
  837

• 0xsha / CloudBrute

  Awesome cloud enumerator

  bugbountycloudcloud-securitys3-bucketamazonvultrgooglelinodecloud-storagepentestingpentest-toolhackingredteaminfosecdigitalocean
  Language:Go 788

• aquasecurity / cloud-security-remediation-guides

  Security Remediation Guides

  cloudcloud-securityawsazure
  682

• Funkmyster / awesome-cloud-security

  A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.

  cloud-securityawssecurityinformation-securitywafdlploggingcloudelasticsearchawesomeawesome-listaws-securitydata-loss-preventionsecurity-standardsnistgoogle-cloud-securityhacktoberfesthacktoberfest2023oracle-cloud-securityhacktoberfestcebu
  563

• Esonhugh / Attack_Code

  文章 Attack Code 的详细全文。安全和开发总是具有伴生属性，尤其是云的安全方向，本篇文章是希望能帮助到读者的云安全入门材料。Full text of the article Attack Code. Security and development always have concomitant attributes, and this is especially true with the security direction of the cloud. This article is an introduction to cloud security that I hope will help readers.

  articlecloudcloud-securitycloudsecurityintroductionsecurity
  Language:Shell 529

• HXSecurity / TerraformGoat

  TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.

  securityterraformgcpcloudsecurityaws-securityazure-securitygcp-securitykubernetes-securitycloud-security
  Language:HCL 505
• stackql

  stackql / stackql

  Query, provision and operate Cloud and SaaS resources and APIs using an extensible SQL based framework

  asset-managementcloudcloud-automationcloud-configcloud-operationscloud-securitycspmdevopsdevsecopsinfrastructure-as-codeopenapi3sqlstackqlhacktoberfest
  Language:Go 443

• redhuntlabs / BucketLoot

  BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for custom keywords as well as Regular Expressions from publicly-exposed storage buckets by scanning files that store data in plain-text.

  automationblackhatbountybugbountybughuntingclicloudcloud-securitycybersecurityinfosecinfosectoolsosintpentestingreconreconnaissances3secret-scanning
  Language:Go 343

• vectra-ai-research / MAAD-AF

  MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).

  adversary-emulationazureadcloud-administrationcloud-securityentra-ididentity-access-managementmicrosoftmicrosoft-azure-securitymicrosoft-graphmicrosoft365mitrepowershellred-teamsecuritysecurity-testingttp
  Language:PowerShell 335

• BishopFox / smogcloud

  Find cloud assets that no one wants exposed 🔎 ☁️

  security-toolsamazonawscloud-securityapi-documentationawsattack-surfacepenetration-testingcloudinfosecblueteamsecurity-engineer
  Language:Go 326

• mazen160 / tfquery

  tfquery: Run SQL queries on your Terraform infrastructure. Query resources and analyze its configuration using a SQL-powered framework.

  terraformcloud-securityawsazuregcpdevsecops
  Language:Python 326

• Aabyss-Team / awsKeyTools

  AWS云平台 AccessKey 泄漏利用工具

  awssecuritysecurity-toolsaccesskeysecretaccesskeycloud-native-securitycloud-securitycloud-security-tools
  Language:Python 325

• Metarget / awesome-cloud-native-security

  awesome resources about cloud native security 🐿

  cloud-computingcloud-nativecloud-native-securitycloud-securitycontainercontainer-escapecontainer-securitydockerdocker-securityk8skuberneteskubernetes-securityserverlessserverless-security
  299

• cado-security / cloudgrep

  cloudgrep is grep for cloud storage

  awsaws-s3grepsearchcloudcloud-securityaws-securityazureazure-securitygcpgcp-security
  Language:Python 289