43 results found Sort:

bridgecrewio
checkov bridgecrewio
1.2k
7.5k
apache-2.0
56
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
aws gcp azure scans devops terraform compliance kubernetes aws-security hacktoberfest cloudformation static-analysis infrastructure-as-code
Created 2019-11-27
16,957 commits to main branch, last one 2 days ago
tenable
terrascan tenable
516
4.9k
apache-2.0
69
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
aws iac sast scans devops security devsecops terraform terrascan kubernetes architecture aws-security gcp-security cloudsecurity azure-security cloud-security infrastructure security-tools security-violations infrastructure-as-code
Created 2017-09-11
1,661 commits to master branch, last one 6 months ago
RhinoSecurityLabs
pacu RhinoSecurityLabs
727
4.6k
bsd-3-clause
109
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
aws python security aws-security penetration-testing
Created 2018-06-13
1,577 commits to master branch, last one 9 days ago
jassics
security-study-plan jassics
578
4.6k
unknown
114
Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...
appsec infosec pentesting study-plan study-guide api-security aws-security gcp-security cybersecurity study-planner azure-security appsec-tutorials security-testing application-security devsecops-university cybersecurity-education
Created 2022-04-19
100 commits to main branch, last one 2 months ago
Netflix
security_monkey Netflix
792
4.4k
apache-2.0
628
Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.
aws boto boto3 aws-s3 python aws-ec2 aws-iam aws-sqs aws-vpc botocore security aws-security aws-policy-tracking
This repository has been archived (exclude archived)
Created 2014-06-27
1,660 commits to develop branch, last one 4 years ago
4ndersonLin
awesome-cloud-security 4ndersonLin
327
2.2k
unknown
44
🛡️ Awesome Cloud Security Resources ⚔️
aws gcp azure security aws-security gcp-security cybersecurity azure-security cloud-security cloud-computing
Created 2020-05-10
67 commits to master branch, last one 4 months ago
salesforce
policy_sentry salesforce
147
2.1k
mit
24
IAM Least Privilege Policy Generator
aws iam cloud security iam-policy salesforce aws-security cloudsecurity hacktoberfest
Created 2019-09-19
1,043 commits to master branch, last one 29 days ago
salesforce
cloudsplaining salesforce
189
2.1k
bsd-3-clause
31
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
aws iam cloud aws-iam security salesforce aws-security hacktoberfest cloud-security
Created 2020-04-18
442 commits to master branch, last one 28 days ago
DataDog
stratus-red-team DataDog
234
2.0k
apache-2.0
36
:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud
aws security purple-team aws-security gcp-security mitre-attack azure-security cloud-security threat-detection adversary-emulation kubernetes-security cloud-native-security detection-engineering
Created 2022-01-07
732 commits to main branch, last one 9 days ago
matanolabs
matano matanolabs
109
1.5k
apache-2.0
21
Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
aws dfir rust siem cloud secops alerting big-data security serverless aws-security cloud-native cybersecurity log-analytics apache-iceberg cloud-security log-management security-tools threat-hunting detection-engineering
Created 2022-07-03
576 commits to main branch, last one 2 months ago
jassics
awesome-aws-security jassics
300
1.3k
gpl-3.0
44
Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
aws awesome security awesome-list aws-auditing aws-security awesome-lists cloud-security security-tools aws-security-resources aws-security-automation
Created 2019-05-16
78 commits to master branch, last one 7 days ago
tmobile
pacbot tmobile
281
1.3k
apache-2.0
80
PacBot (Policy as Code Bot)
aws java cloud security angularjs spring-boot aws-security cloud-native cloud-auditing cloud-security policy-as-code security-automation continous-compliance cloud-compliance-reporting
Created 2018-09-18
972 commits to master branch, last one 4 years ago
bridgecrewio
terragoat bridgecrewio
5.4k
1.2k
apache-2.0
22
TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production...
goat devsecops terraform aws-security gcp-security azure-security cloud-security
Created 2020-03-27
259 commits to master branch, last one about a year ago
SecurityFTW
cs-suite SecurityFTW
217
1.2k
gpl-3.0
61
Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.
gcp azure security aws-audit azure-audit aws-security azure-security cloud-security security-audit security-tools gcp-audit-report
Created 2017-08-16
171 commits to master branch, last one 4 years ago
aws-samples
aws-security-reference-architecture-examples aws-samples
260
1.0k
other
35
Example solutions demonstrating how to implement patterns within the AWS Security Reference Architecture guide using CloudFormation (including Customizations for AWS Control Tower) and Terraform.
aws aws-security aws-control-tower aws-cloudformation aws-security-automation
Created 2020-08-19
448 commits to main branch, last one 10 days ago
jonrau1
ElectricEye jonrau1
127
985
apache-2.0
33
ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & ...
aws aws-audit devsecops compliance multicloud aws-security gcp-security security-hub saas-security aws-compliance cloud-auditing cloud-security security-audit security-tools asset-management security-monitoring security-engineering google-cloud-security attack-surface-management cloud-compliance-reporting
Created 2020-02-07
1,903 commits to master branch, last one about a month ago
WithSecureLabs
awspx WithSecureLabs
102
940
gpl-3.0
27
A graph-based tool for visualizing effective access and resource relationships in AWS environments.
aws pentesting aws-security graph-theory
Created 2019-12-04
315 commits to master branch, last one 3 years ago
appsecco
breaking-and-pwning-apps-and-servers-aws-azure-training appsecco
257
937
mit
48
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
free opensource pentesting aws-security azure-security penetration-testing application-security
Created 2020-04-09
34 commits to master branch, last one 2 years ago
bridgecrewio
AirIAM bridgecrewio
79
786
apache-2.0
13
Least privilege AWS IAM Terraformer
aws iam aws-iam terraform bridgecrew aws-security hacktoberfest privileges-model aws-security-automation
Created 2020-02-19
428 commits to master branch, last one 12 days ago
Funkmyster
awesome-cloud-security Funkmyster
114
593
unknown
17
A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.
aws dlp waf nist cloud awesome logging security awesome-list aws-security elasticsearch hacktoberfest cloud-security hacktoberfest2023 hacktoberfestcebu security-standards data-loss-prevention information-security google-cloud-security oracle-cloud-security
Created 2017-05-28
50 commits to master branch, last one about a year ago
HXSecurity
TerraformGoat HXSecurity
90
568
apache-2.0
8
TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.
gcp security terraform aws-security gcp-security cloudsecurity azure-security cloud-security kubernetes-security
Created 2022-04-28
231 commits to main branch, last one 2 years ago
mikeroyal
AWS-Guide mikeroyal
90
514
unknown
19
Amazon Web Services (AWS) Guide. Learn all about Amazon Web Services Tools, Services, and Certifications.
aws aws-s3 aws-cdk aws-cli aws-ec2 aws-sdk secrets dynamodb aws-lambda cloudwatch credentials awesome-list aws-dynamodb aws-security aws-apigateway aws-serverless cloudformation cloud-computing aws-certification amazon-web-services
Created 2021-04-11
59 commits to main branch, last one about a year ago
dowjones
hammer dowjones
60
437
other
25
Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)
aws devsecops aws-security cloudsecurity
Created 2018-07-19
259 commits to master branch, last one 5 years ago
Skyscanner
cfripper Skyscanner
56
404
apache-2.0
12
Library and CLI tool for analysing CloudFormation templates and check them for security compliance.
aws cfripper compliance aws-security cloudformation static-analysis cloud-governance cloudformation-linter cloudformation-template
Created 2018-07-02
449 commits to master branch, last one 27 days ago
DataDog
managed-kubernetes-auditing-toolkit DataDog
20
339
apache-2.0
4
All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
eks aws-eks kubernetes aws-security managed-kubernetes kubernetes-security
Created 2023-04-03
80 commits to main branch, last one about a year ago
jassics
cybersecurity-roadmap jassics
52
329
gpl-3.0
10
Skills and career roadmap for various security roles like application security, cloud security, DevSecOps, security engineer, security researchers, pentesting, api security, network security, mobile s...
security devsecops career-plan aws-security career-guide cloud-security security-tools career-roadmaps network-security career-development security-questions interview-questions security-automation application-security cybersecurity-awareness cybersecurity-career-path
Created 2020-05-23
55 commits to master branch, last one 3 months ago
cado-security
cloudgrep cado-security
16
324
apache-2.0
7
cloudgrep is grep for cloud storage
aws gcp grep azure cloud aws-s3 search aws-security gcp-security azure-security cloud-security
Created 2023-09-30
186 commits to main branch, last one about a month ago
owenrumney
lazytrivy owenrumney
8
286
apache-2.0
3
Vulnerability scanning just got lazier
tui trivy docker golang podman scanner golang-cli aws-security security-tools staticanalysis misconfigurations security-auditing-tool vulnerability-scanners
Created 2022-08-13
69 commits to master branch, last one about a month ago
goldfiglabs
rpCheckup goldfiglabs
12
160
mpl-2.0
6
rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.
s3 aws ec2 cspm infosec aws-security cloudsecurity resourcepolicy
Created 2021-02-26
53 commits to main branch, last one 3 years ago
adanalvarez
TrailDiscover adanalvarez
13
147
cc-by-4.0
6
An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and security implications
aws security aws-security mitre-attack cloud-security
Created 2024-03-02
51 commits to main branch, last one about a month ago