awesome-cloud-security
🛡️ Awesome Cloud Security Resources ⚔️
https://github.com/4ndersonLin/awesome-cloud-security
Last synced: about 15 hours ago
JSON representation
-
Native tools
- CloudTrail
- Config
- Certificate Manager
- CloudHSM
- Inspector
- KMS
- Shield
- WAF
- Artifact
- Audit manager
- Elastic Disaster Recovery
- Detective
- Firewall Manager
- GuardDuty
- Macie
- Network Firewall
- Secret Manager
- Security Hub - party security service.
- Single Sign-On
- VPC Flowlog
- Application Gateway
- DDoS Protection
- Dedicated HSM
- Key Vault
- Monitor
- Security Center - party security service.
- Sentinel
- Access Transparency
- Armor
- Assured workloads
- Audit Logs
- Cloud HSM
- Cloud IDS
- Confidential VM
- Context-aware Access
- DLP
- Identity-Aware Proxy - Aware Proxy for protect the internal service.
- Policy Intelligence
- Security Command Center
- Shielded VM
- Event Threat Detection
- VPC Service Controls
- Context-aware Access
- ThreatMapper
- Sentinel
- Key Vault
- DDoS Protection
- Audit Logs
- Monitor
- Security Center - party security service.
- Sentinel
- Binanry Authorization
- Policy Intelligence
- Single Sign-On
-
Compliances
-
Others
- CCSP – Certified Cloud Security Professional
- On-Demand: Cloud Security: AWS Edition Bootcamp
- Attacking and Defending AWS
- CSA cloud security guidance v4
- Mapping of On-Premises Security Controls vs. Major Cloud Providers Services
- AWS Security
- DevSecOps: Insecure Docker Registry
- On-Demand: DevSecOps: Beginner Edition Bootcamp
- On-Demand: Container Security: Beginner Edition Bootcamp
- DevSecOps – Kubernetes DevOps & Security
- Certified Kubernetes Security Specialist (CKS)
- Appsecco provides training
- Cloud Security Research by RhinoSecurityLabs
- AWS Security
- CSA cloud security guidance v4
- Microsoft Certified: Azure Security Engineer Associate
-
AWS
-
Container
- Open policy agent - based control tool.
- Falco
- mkit
- auditkube
-
Azure
-
GCP
-
SaaS
- S3 Inspector
- GCPBucketBrute
- Policy Sentry
- Serverless Goat
- binaryalert
- cloudsplaining - prioritized report.
- aws-allowlister
- FestIN
- Lambda Guard
- Cloud Guardrails - pick cloud security guardrails by generating Terraform files that create Azure Policy Initiatives.
- Function Shield
- IAM Zero - privilege policies.
- SkyArk
-
Infrastructure
- CloudQuery - baked SQL [policies](https://hub.cloudquery.io/policies) for security and compliance.
- checkov - as-code.
- kics - as-code.
- Cloud-custodian
- Steampipe
- Security Monkey
- Cloudmapper
- ScoutSuite - cloud security auditing tool.
- aws-vault
- aws_pwn
- pacu
- Zeus
- consoleme
- aws-firewall-factory
- Matano
- Cloudsploit
- PMapper
- pacbot
- ElectricEye
- Forseti security
- Hammer - account cloud security tool for AWS. It identifies misconfigurations and insecure data exposures within most popular AWS resources.
- azucar
- cs suite
- cloud-forensics-utils
- aws_ir
- Cloud-Katana - cloud and hybrid cloud environments.
- cloudlist
- Cloud Sniper
- Cloudmarker
- dftimewolf - cloud framework for orchestrating forensic collection, processing and data export.
- diffy
- Metabadger
- SkyWrapper
- Smogcloud
- awspx - based tool for visualizing effective access and resource relationships within AWS.
- Prowler
- tfsec
- Terrascan
-
Penetration testing/learning
-
Benchmarks
Programming Languages
Categories
Sub Categories
Keywords
aws
31
security
24
cloud
17
aws-security
15
cloud-security
15
azure
11
security-tools
11
gcp
11
kubernetes
8
iam
7
devsecops
7
terraform
5
cloudsecurity
5
compliance
5
devops
4
security-audit
4
aws-iam
4
cloud-native
4
pentesting
4
azure-security
4
lambda
4
cspm
4
google-cloud-platform
3
google
3
containers
3
salesforce
3
gke
3
serverless
3
python
3
penetration-testing
3
gcp-security
2
cloud-compliance-reporting
2
aws-lambda
2
secops
2
k8s
2
cnapp
2
s3-bucket
2
cloud-auditing
2
amazon
2
infosec
2
hacking
2
eks
2
aws-audit
2
attack-surface-management
2
asset-management
2
hardening
2
etl
2
botocore
2
security-automation
2
cybersecurity
2