43 results found Sort:

bridgecrewio
checkov bridgecrewio
1.1k
6.7k
apache-2.0
59
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
aws gcp azure scans devops terraform compliance kubernetes aws-security hacktoberfest cloudformation static-analysis infrastructure-as-code
Created 2019-11-27
16,237 commits to main branch, last one a day ago
tenable
terrascan tenable
495
4.6k
apache-2.0
68
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
aws iac sast scans devops security devsecops terraform terrascan kubernetes architecture aws-security gcp-security cloudsecurity azure-security cloud-security infrastructure security-tools security-violations infrastructure-as-code
Created 2017-09-11
1,654 commits to master branch, last one 3 months ago
Netflix
security_monkey Netflix
797
4.4k
apache-2.0
631
Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.
aws boto boto3 aws-s3 python aws-ec2 aws-iam aws-sqs aws-vpc botocore security aws-security aws-policy-tracking
This repository has been archived (exclude archived)
Created 2014-06-27
1,660 commits to develop branch, last one 3 years ago
jassics
security-study-plan jassics
504
4.2k
unknown
106
Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...
appsec infosec pentesting study-plan study-guide api-security aws-security gcp-security cybersecurity study-planner azure-security appsec-tutorials security-testing application-security devsecops-university cybersecurity-education
Created 2022-04-19
59 commits to main branch, last one 2 days ago
RhinoSecurityLabs
pacu RhinoSecurityLabs
672
4.2k
bsd-3-clause
109
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
aws python security aws-security penetration-testing
Created 2018-06-13
1,461 commits to master branch, last one 14 days ago
4ndersonLin
awesome-cloud-security 4ndersonLin
300
2.0k
unknown
43
🛡️ Awesome Cloud Security Resources ⚔️
aws gcp azure security aws-security gcp-security cybersecurity azure-security cloud-security cloud-computing
Created 2020-05-10
63 commits to master branch, last one about a month ago
salesforce
policy_sentry salesforce
134
2.0k
mit
23
IAM Least Privilege Policy Generator
aws iam cloud security iam-policy salesforce aws-security cloudsecurity hacktoberfest
Created 2019-09-19
977 commits to master branch, last one 11 days ago
salesforce
cloudsplaining salesforce
178
1.9k
bsd-3-clause
32
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
aws iam cloud aws-iam security salesforce aws-security hacktoberfest cloud-security
Created 2020-04-18
380 commits to master branch, last one about a month ago
DataDog
stratus-red-team DataDog
198
1.7k
apache-2.0
34
:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud
aws security purple-team aws-security gcp-security mitre-attack azure-security cloud-security threat-detection adversary-emulation kubernetes-security cloud-native-security detection-engineering
Created 2022-01-07
645 commits to main branch, last one 25 days ago
matanolabs
matano matanolabs
96
1.4k
apache-2.0
22
Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
aws dfir rust siem cloud secops alerting big-data security serverless aws-security cloud-native cybersecurity log-analytics apache-iceberg cloud-security log-management security-tools threat-hunting detection-engineering
Created 2022-07-03
575 commits to main branch, last one 24 days ago
tmobile
pacbot tmobile
278
1.3k
apache-2.0
80
PacBot (Policy as Code Bot)
aws java cloud security angularjs spring-boot aws-security cloud-native cloud-auditing cloud-security policy-as-code security-automation continous-compliance cloud-compliance-reporting
Created 2018-09-18
972 commits to master branch, last one 3 years ago
jassics
awesome-aws-security jassics
263
1.2k
gpl-3.0
46
Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
aws awesome security awesome-list aws-auditing aws-security awesome-lists cloud-security security-tools aws-security-resources aws-security-automation
Created 2019-05-16
71 commits to master branch, last one 4 months ago
SecurityFTW
cs-suite SecurityFTW
217
1.1k
gpl-3.0
62
Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.
gcp azure security aws-audit azure-audit aws-security azure-security cloud-security security-audit security-tools gcp-audit-report
Created 2017-08-16
171 commits to master branch, last one 3 years ago
bridgecrewio
terragoat bridgecrewio
2.4k
1.1k
apache-2.0
23
TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production...
goat devsecops terraform aws-security gcp-security azure-security cloud-security
Created 2020-03-27
259 commits to master branch, last one about a year ago
aws-samples
aws-security-reference-architecture-examples aws-samples
229
944
other
36
Example solutions demonstrating how to implement patterns within the AWS Security Reference Architecture guide using CloudFormation (including Customizations for AWS Control Tower) and Terraform.
aws aws-security aws-control-tower aws-cloudformation aws-security-automation
Created 2020-08-19
414 commits to main branch, last one 4 days ago
appsecco
breaking-and-pwning-apps-and-servers-aws-azure-training appsecco
255
918
mit
50
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
free opensource pentesting aws-security azure-security penetration-testing application-security
Created 2020-04-09
34 commits to master branch, last one about a year ago
jonrau1
ElectricEye jonrau1
120
898
apache-2.0
34
ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & ...
aws aws-audit devsecops compliance multicloud aws-security gcp-security security-hub saas-security aws-compliance cloud-auditing cloud-security security-audit security-tools asset-management security-monitoring security-engineering google-cloud-security attack-surface-management cloud-compliance-reporting
Created 2020-02-07
1,811 commits to master branch, last one 4 days ago
WithSecureLabs
awspx WithSecureLabs
99
886
gpl-3.0
27
A graph-based tool for visualizing effective access and resource relationships in AWS environments.
aws pentesting aws-security graph-theory
Created 2019-12-04
315 commits to master branch, last one 2 years ago
bridgecrewio
AirIAM bridgecrewio
79
758
apache-2.0
15
Least privilege AWS IAM Terraformer
aws iam aws-iam terraform bridgecrew aws-security hacktoberfest privileges-model aws-security-automation
Created 2020-02-19
426 commits to master branch, last one about a year ago
Funkmyster
awesome-cloud-security Funkmyster
108
568
unknown
18
A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.
aws dlp waf nist cloud awesome logging security awesome-list aws-security elasticsearch hacktoberfest cloud-security hacktoberfest2023 hacktoberfestcebu security-standards data-loss-prevention information-security google-cloud-security oracle-cloud-security
Created 2017-05-28
50 commits to master branch, last one 8 months ago
HXSecurity
TerraformGoat HXSecurity
79
511
apache-2.0
8
TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.
gcp security terraform aws-security gcp-security cloudsecurity azure-security cloud-security kubernetes-security
Created 2022-04-28
231 commits to main branch, last one about a year ago
mikeroyal
AWS-Guide mikeroyal
82
484
unknown
18
Amazon Web Services (AWS) Guide. Learn all about Amazon Web Services Tools, Services, and Certifications.
aws aws-s3 aws-cdk aws-cli aws-ec2 aws-sdk secrets dynamodb aws-lambda cloudwatch credentials awesome-list aws-dynamodb aws-security aws-apigateway aws-serverless cloudformation cloud-computing aws-certification amazon-web-services
Created 2021-04-11
59 commits to main branch, last one 5 months ago
dowjones
hammer dowjones
62
433
other
26
Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)
aws devsecops aws-security cloudsecurity
Created 2018-07-19
259 commits to master branch, last one 5 years ago
Skyscanner
cfripper Skyscanner
53
391
apache-2.0
13
Library and CLI tool for analysing CloudFormation templates and check them for security compliance.
aws cfripper compliance aws-security cloudformation static-analysis cloud-governance cloudformation-linter cloudformation-template
Created 2018-07-02
431 commits to master branch, last one 17 days ago
cado-security
cloudgrep cado-security
14
296
apache-2.0
7
cloudgrep is grep for cloud storage
aws gcp grep azure cloud aws-s3 search aws-security gcp-security azure-security cloud-security
Created 2023-09-30
150 commits to main branch, last one about a month ago
owenrumney
lazytrivy owenrumney
6
273
apache-2.0
5
Vulnerability scanning just got lazier
tui trivy docker golang podman scanner golang-cli aws-security security-tools staticanalysis misconfigurations security-auditing-tool vulnerability-scanners
Created 2022-08-13
66 commits to master branch, last one about a month ago
DataDog
managed-kubernetes-auditing-toolkit DataDog
14
259
apache-2.0
5
All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
eks aws-eks kubernetes aws-security managed-kubernetes kubernetes-security
Created 2023-04-03
80 commits to main branch, last one 5 months ago
jassics
cybersecurity-roadmap jassics
40
253
gpl-3.0
12
Skills and career roadmap for various security roles like application security, cloud security, DevSecOps, security engineer, security researchers, pentesting, api security, network security, mobile s...
security devsecops career-plan aws-security career-guide cloud-security security-tools career-roadmaps network-security career-development security-questions interview-questions security-automation application-security cybersecurity-awareness cybersecurity-career-path
Created 2020-05-23
52 commits to master branch, last one 4 months ago
goldfiglabs
rpCheckup goldfiglabs
14
157
mpl-2.0
7
rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.
s3 aws ec2 cspm infosec aws-security cloudsecurity resourcepolicy
Created 2021-02-26
53 commits to main branch, last one 3 years ago
riskprofiler
CloudFrontier riskprofiler
20
119
apache-2.0
9
Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.
aws gcp azure oracle dynamodb serverless shadowrisk api-gateway shadow-risk aws-security digitalocean gcp-security cloudsecurity cybersecurity azure-security cloud-security cyber-security lambda-functions serverless-framework
Created 2020-08-06
92 commits to master branch, last one 6 months ago