An authorization library that supports access control models like ACL, RBAC, ABAC in Golang: https://discord.gg/S5UjpzGZjN
Prowler is the Open Cloud Security for AWS, Azure, GCP, Kubernetes, M365 and more. As agent-less, it helps for continuous monitoring, security assessments & audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, ENS and more
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
Open Source Cloud Native Application Protection Platform (CNAPP)
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
IAM Least Privilege Policy Generator
awesome cloud security 收集一些国内外不错的云安全资源,该项目主要面向国内的安全人员
This repo includes Books and imp notes related to GCP, Azure, AWS, Docker, K8s, and DevOps. More, exam and interview prep notes.
A secure low code honeypot framework, leveraging AI for System Virtualization.
A tool for quickly evaluating IAM permissions in AWS.
T Wiki 云安全知识文库,可能是国内首个云安全知识文库?
Cloudlist is a tool for listing Assets from multiple Cloud Providers.
Extensible auto-tagger for your IaC files. The ultimate way to link entities in the cloud back to the codified resource which created it.
Open Source Cloud Security
TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.
文章 Attack Code 的详细全文。安全和开发总是具有伴生属性,尤其是云的安全方向,本篇文章是希望能帮助到读者的云安全入门材料。Full text of the article Attack Code. Security and development always have concomitant attributes, and this is especially true with the security direction of the cloud. This article is an introduction to cloud security that I hope will help readers.
一款帮助云租户发现和测试云上风险、增强云上防护能力的综合性开源工具
Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)
Vajra is a UI-based tool with multiple techniques for attacking and enumerating in the target's Azure and AWS environment. It features an intuitive web-based user interface built with the Python Flask module for a better user experience. The primary focus of this tool is to have different attacking techniques all at one place with web UI interfa...
Add a description, image, and links to the cloudsecurity topic page so that developers can more easily learn about it.
To associate your repository with the cloudsecurity topic, visit your repo's landing page and select "manage topics."