43 results found Sort:

bridgecrewio
checkov bridgecrewio
1.1k
7.1k
apache-2.0
59
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
aws gcp azure scans devops terraform compliance kubernetes aws-security hacktoberfest cloudformation static-analysis infrastructure-as-code
Created 2019-11-27
16,704 commits to main branch, last one 11 hours ago
tenable
terrascan tenable
500
4.8k
apache-2.0
69
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
aws iac sast scans devops security devsecops terraform terrascan kubernetes architecture aws-security gcp-security cloudsecurity azure-security cloud-security infrastructure security-tools security-violations infrastructure-as-code
Created 2017-09-11
1,661 commits to master branch, last one 2 months ago
jassics
security-study-plan jassics
546
4.4k
unknown
109
Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...
appsec infosec pentesting study-plan study-guide api-security aws-security gcp-security cybersecurity study-planner azure-security appsec-tutorials security-testing application-security devsecops-university cybersecurity-education
Created 2022-04-19
91 commits to main branch, last one 21 days ago
RhinoSecurityLabs
pacu RhinoSecurityLabs
701
4.4k
bsd-3-clause
109
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
aws python security aws-security penetration-testing
Created 2018-06-13
1,520 commits to master branch, last one 6 days ago
Netflix
security_monkey Netflix
800
4.4k
apache-2.0
630
Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.
aws boto boto3 aws-s3 python aws-ec2 aws-iam aws-sqs aws-vpc botocore security aws-security aws-policy-tracking
This repository has been archived (exclude archived)
Created 2014-06-27
1,660 commits to develop branch, last one 3 years ago
4ndersonLin
awesome-cloud-security 4ndersonLin
317
2.1k
unknown
44
🛡️ Awesome Cloud Security Resources ⚔️
aws gcp azure security aws-security gcp-security cybersecurity azure-security cloud-security cloud-computing
Created 2020-05-10
67 commits to master branch, last one 13 days ago
salesforce
policy_sentry salesforce
142
2.0k
mit
25
IAM Least Privilege Policy Generator
aws iam cloud security iam-policy salesforce aws-security cloudsecurity hacktoberfest
Created 2019-09-19
1,021 commits to master branch, last one 4 days ago
salesforce
cloudsplaining salesforce
187
2k
bsd-3-clause
32
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
aws iam cloud aws-iam security salesforce aws-security hacktoberfest cloud-security
Created 2020-04-18
422 commits to master branch, last one 4 days ago
DataDog
stratus-red-team DataDog
215
1.8k
apache-2.0
38
:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud
aws security purple-team aws-security gcp-security mitre-attack azure-security cloud-security threat-detection adversary-emulation kubernetes-security cloud-native-security detection-engineering
Created 2022-01-07
694 commits to main branch, last one 9 days ago
matanolabs
matano matanolabs
100
1.5k
apache-2.0
22
Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
aws dfir rust siem cloud secops alerting big-data security serverless aws-security cloud-native cybersecurity log-analytics apache-iceberg cloud-security log-management security-tools threat-hunting detection-engineering
Created 2022-07-03
575 commits to main branch, last one 5 months ago
tmobile
pacbot tmobile
277
1.3k
apache-2.0
82
PacBot (Policy as Code Bot)
aws java cloud security angularjs spring-boot aws-security cloud-native cloud-auditing cloud-security policy-as-code security-automation continous-compliance cloud-compliance-reporting
Created 2018-09-18
972 commits to master branch, last one 4 years ago
jassics
awesome-aws-security jassics
282
1.3k
gpl-3.0
45
Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
aws awesome security awesome-list aws-auditing aws-security awesome-lists cloud-security security-tools aws-security-resources aws-security-automation
Created 2019-05-16
73 commits to master branch, last one about a month ago
bridgecrewio
terragoat bridgecrewio
2.4k
1.2k
apache-2.0
24
TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production...
goat devsecops terraform aws-security gcp-security azure-security cloud-security
Created 2020-03-27
259 commits to master branch, last one about a year ago
SecurityFTW
cs-suite SecurityFTW
216
1.1k
gpl-3.0
62
Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.
gcp azure security aws-audit azure-audit aws-security azure-security cloud-security security-audit security-tools gcp-audit-report
Created 2017-08-16
171 commits to master branch, last one 4 years ago
aws-samples
aws-security-reference-architecture-examples aws-samples
248
982
other
35
Example solutions demonstrating how to implement patterns within the AWS Security Reference Architecture guide using CloudFormation (including Customizations for AWS Control Tower) and Terraform.
aws aws-security aws-control-tower aws-cloudformation aws-security-automation
Created 2020-08-19
431 commits to main branch, last one about a month ago
jonrau1
ElectricEye jonrau1
126
961
apache-2.0
34
ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & ...
aws aws-audit devsecops compliance multicloud aws-security gcp-security security-hub saas-security aws-compliance cloud-auditing cloud-security security-audit security-tools asset-management security-monitoring security-engineering google-cloud-security attack-surface-management cloud-compliance-reporting
Created 2020-02-07
1,882 commits to master branch, last one 15 days ago
appsecco
breaking-and-pwning-apps-and-servers-aws-azure-training appsecco
257
927
mit
49
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
free opensource pentesting aws-security azure-security penetration-testing application-security
Created 2020-04-09
34 commits to master branch, last one about a year ago
WithSecureLabs
awspx WithSecureLabs
102
922
gpl-3.0
27
A graph-based tool for visualizing effective access and resource relationships in AWS environments.
aws pentesting aws-security graph-theory
Created 2019-12-04
315 commits to master branch, last one 3 years ago
bridgecrewio
AirIAM bridgecrewio
78
776
apache-2.0
15
Least privilege AWS IAM Terraformer
aws iam aws-iam terraform bridgecrew aws-security hacktoberfest privileges-model aws-security-automation
Created 2020-02-19
426 commits to master branch, last one 2 years ago
Funkmyster
awesome-cloud-security Funkmyster
111
581
unknown
18
A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.
aws dlp waf nist cloud awesome logging security awesome-list aws-security elasticsearch hacktoberfest cloud-security hacktoberfest2023 hacktoberfestcebu security-standards data-loss-prevention information-security google-cloud-security oracle-cloud-security
Created 2017-05-28
50 commits to master branch, last one about a year ago
HXSecurity
TerraformGoat HXSecurity
82
536
apache-2.0
8
TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.
gcp security terraform aws-security gcp-security cloudsecurity azure-security cloud-security kubernetes-security
Created 2022-04-28
231 commits to main branch, last one about a year ago
mikeroyal
AWS-Guide mikeroyal
88
506
unknown
20
Amazon Web Services (AWS) Guide. Learn all about Amazon Web Services Tools, Services, and Certifications.
aws aws-s3 aws-cdk aws-cli aws-ec2 aws-sdk secrets dynamodb aws-lambda cloudwatch credentials awesome-list aws-dynamodb aws-security aws-apigateway aws-serverless cloudformation cloud-computing aws-certification amazon-web-services
Created 2021-04-11
59 commits to main branch, last one 10 months ago
dowjones
hammer dowjones
62
436
other
26
Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)
aws devsecops aws-security cloudsecurity
Created 2018-07-19
259 commits to master branch, last one 5 years ago
Skyscanner
cfripper Skyscanner
55
399
apache-2.0
13
Library and CLI tool for analysing CloudFormation templates and check them for security compliance.
aws cfripper compliance aws-security cloudformation static-analysis cloud-governance cloudformation-linter cloudformation-template
Created 2018-07-02
442 commits to master branch, last one 8 days ago
cado-security
cloudgrep cado-security
16
319
apache-2.0
7
cloudgrep is grep for cloud storage
aws gcp grep azure cloud aws-s3 search aws-security gcp-security azure-security cloud-security
Created 2023-09-30
152 commits to main branch, last one 5 days ago
DataDog
managed-kubernetes-auditing-toolkit DataDog
18
318
apache-2.0
5
All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
eks aws-eks kubernetes aws-security managed-kubernetes kubernetes-security
Created 2023-04-03
80 commits to main branch, last one 10 months ago
jassics
cybersecurity-roadmap jassics
47
297
gpl-3.0
11
Skills and career roadmap for various security roles like application security, cloud security, DevSecOps, security engineer, security researchers, pentesting, api security, network security, mobile s...
security devsecops career-plan aws-security career-guide cloud-security security-tools career-roadmaps network-security career-development security-questions interview-questions security-automation application-security cybersecurity-awareness cybersecurity-career-path
Created 2020-05-23
54 commits to master branch, last one about a month ago
owenrumney
lazytrivy owenrumney
7
281
apache-2.0
5
Vulnerability scanning just got lazier
tui trivy docker golang podman scanner golang-cli aws-security security-tools staticanalysis misconfigurations security-auditing-tool vulnerability-scanners
Created 2022-08-13
66 commits to master branch, last one 6 months ago
goldfiglabs
rpCheckup goldfiglabs
14
158
mpl-2.0
7
rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.
s3 aws ec2 cspm infosec aws-security cloudsecurity resourcepolicy
Created 2021-02-26
53 commits to main branch, last one 3 years ago
riskprofiler
CloudFrontier riskprofiler
20
120
apache-2.0
9
Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.
aws gcp azure oracle dynamodb serverless shadowrisk api-gateway shadow-risk aws-security digitalocean gcp-security cloudsecurity cybersecurity azure-security cloud-security cyber-security lambda-functions serverless-framework
Created 2020-08-06
92 commits to master branch, last one 11 months ago