cloudsecurity
There are 16 repositories under cloudsecurity topic.
- ThreatMapper
deepfence / ThreatMapper
Open source cloud native security observability platform. Linux, K8s, AWS Fargate and more.
Language:TypeScript 4640 - terrascan
tenable / terrascan
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
Language:Go 4522 - kubernetes-goat
madhuakula / kubernetes-goat
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
Language:HTML 3886 salesforce / policy_sentry
IAM Least Privilege Policy Generator
Language:Python 1941teamssix / awesome-cloud-security
awesome cloud security 收集一些国内外不错的云安全资源,该项目主要面向国内的安全人员
- Language:Python 1327
ahmedtariq01 / Cloud-DevOps-Learning-Resources
This repo includes Books and imp notes related to GCP, Azure, AWS, Docker, K8s, and DevOps. More, exam and interview prep notes.
- Language:Dockerfile 839
projectdiscovery / cloudlist
Cloudlist is a tool for listing Assets from multiple Cloud Providers.
Language:Go 800bridgecrewio / yor
Extensible auto-tagger for your IaC files. The ultimate way to link entities in the cloud back to the codified resource which created it.
Language:Go 778- Language:TypeScript 668
- beelzebub
mariocandela / beelzebub
A secure low code honeypot framework, leveraging AI for System Virtualization.
Language:Go 576 Esonhugh / Attack_Code
文章 Attack Code 的详细全文。安全和开发总是具有伴生属性,尤其是云的安全方向,本篇文章是希望能帮助到读者的云安全入门材料。Full text of the article Attack Code. Security and development always have concomitant attributes, and this is especially true with the security direction of the cloud. This article is an introduction to cloud security that I hope will help readers.
Language:Shell 529HXSecurity / TerraformGoat
TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.
Language:HCL 503- Language:Python 430
- Vajra
TROUBLE-1 / Vajra
Vajra is a UI-based tool with multiple techniques for attacking and enumerating in the target's Azure and AWS environment. It features an intuitive web-based user interface built with the Python Flask module for a better user experience. The primary focus of this tool is to have different attacking techniques all at one place with web UI interfaces.
Language:CSS 353 - Language:Go 315
eshlomo1 / Microsoft-Sentinel-SecOps
Microsoft Sentinel SOC Operations
Language:PowerShell 230- magpie
openraven / magpie
A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat landscape such as cloud ransomware and supply chain attacks.
Language:Java 159 - rpCheckup
goldfiglabs / rpCheckup
rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.
Language:Go 157 - nuvolaLanguage:Go 134
prancer-io / cloud-validation-framework
prancer platform is an IaC Security engine + Continuous Compliance for your cloud (Azure, AWS, GCP) and Kubernetes environment
Language:Python 122riskprofiler / CloudFrontier
Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.
Language:Lua 116Cfngoat is Bridgecrew's "Vulnerable by Design" Cloudformation repository. Cfngoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
- GATOR
anrbn / GATOR
GATOR - GCP Attack Toolkit for Offensive Research, a tool designed to aid in research and exploiting Google Cloud Environments
Language:Python 87 vectra-ai-research / derf
DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation of repeatable detection samples in the cloud. Built on Google Workflows
Language:HCL 74CloudDefenseAI / falco_extended_rules
Curating Falco rules with MITRE ATT&CK Matrix
Language:Python 70m14r41 / PentestingEverything
Web | Mobile | API | Thick Client | Source Code Review | Wireless | Network Pentesting etc...
Language:JavaScript 68- introspector
A schema and set of tools for using SQL to query cloud infrastructure.
Language:Python 66 - cfsec
aquasecurity / cfsec
Static analysis for CloudFormation templates to identify common misconfiguration
Language:Go 58 - Language:Python 51
- cloudsec-tidbits
doyensec / cloudsec-tidbits
Blogpost series showcasing interesting cloud - web app security bugs
Language:HCL 44 stafordtituss / HazProne
HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enabling you to pentest Vulnerabilities within, and hence, gain a better understanding of what could go wrong and why!!
Language:HCL 38lightspin-tech / lightspin-2022-top-7-attack-paths
Based on Lightspin proprietary data, research, and our tracking of cloud security trends in the market, our research team has compiled a list of the 2022 Top 7 Cloud Attack Paths across AWS, Azure, GCP, and Kubernetes as seen on the Lightspin Cloud Native Application Protection Platform.
irgoncalves / awesome-security-articles
This repository contains links to awesome security articles.
Terraform provider for Policy Sentry (IAM least privilege generator and auditor)
Language:Go 29
