Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
awesome-cloud-security
🛡️ Awesome Cloud Security Resources ⚔️
https://github.com/4ndersonLin/awesome-cloud-security
Last synced: 3 days ago
JSON representation
-
Compliances
-
Benchmarks
-
Native tools
- Policy Intelligence
- Config
- Artifact
- Audit manager
- Certificate Manager
- CloudTrail
- Elastic Disaster Recovery
- Detective
- Firewall Manager
- GuardDuty
- CloudHSM
- Inspector
- KMS
- Macie
- Network Firewall
- Secret Manager
- Security Hub - party security service.
- Shield
- Single Sign-On
- VPC Flowlog
- WAF
- Application Gateway
- DDoS Protection
- Dedicated HSM
- Key Vault
- Monitor
- Security Center - party security service.
- Sentinel
- Access Transparency
- Apigee Sense
- Armor
- Asset Inventory
- Assured workloads
- Audit Logs
- Binanry Authorization
- Cloud HSM
- Cloud IDS
- Confidential VM
- Context-aware Access
- DLP
- EKM
- Identity-Aware Proxy - Aware Proxy for protect the internal service.
- KMS
- Security Command Center
- Security Scanner
- Shielded VM
- Event Threat Detection
- VPC Service Controls
- Context-aware Access
- ThreatMapper
- Application Gateway
- Sentinel
- Security Scanner
-
Infrastructure
- Prowler
- Terrascan
- tfsec
- PMapper
- aws_pwn
- aws_ir
- aws-firewall-factory
- aws-vault
- azucar
- checkov - as-code.
- cloud-forensics-utils
- Cloud-Katana - cloud and hybrid cloud environments.
- cloudlist
- Cloud Sniper
- Cloudmapper
- Cloudmarker
- Cloudsploit
- CloudQuery - baked SQL [policies](https://hub.cloudquery.io/policies) for security and compliance.
- Cloud-custodian
- consoleme
- cs suite
- dftimewolf - cloud framework for orchestrating forensic collection, processing and data export.
- diffy
- ElectricEye
- Forseti security
- Hammer - account cloud security tool for AWS. It identifies misconfigurations and insecure data exposures within most popular AWS resources.
- kics - as-code.
- Matano
- Metabadger
- pacbot
- pacu
- ScoutSuite - cloud security auditing tool.
- Security Monkey
- SkyWrapper
- Smogcloud
- Steampipe
- Zeus
- awspx - based tool for visualizing effective access and resource relationships within AWS.
- Prowler
- tfsec
- Terrascan
-
SaaS
- S3 Inspector
- aws-allowlister
- binaryalert
- cloudsplaining - prioritized report.
- Cloud Guardrails - pick cloud security guardrails by generating Terraform files that create Azure Policy Initiatives.
- Function Shield
- FestIN
- GCPBucketBrute
- IAM Zero - privilege policies.
- Lambda Guard
- Policy Sentry
- Serverless Goat
- SkyArk
- S3 Inspector
-
Penetration testing/learning
-
AWS
-
Azure
-
GCP
-
Others
- CSA cloud security guidance v4
- Cloud Risk Encyclopedia by Orca Security
- Mapping of On-Premises Security Controls vs. Major Cloud Providers Services
- Cloud Security Research by RhinoSecurityLabs
- Appsecco provides training
- DevSecOps – Kubernetes DevOps & Security
- Certified Kubernetes Security Specialist (CKS)
- AWS Security
- Cloud Risk Encyclopedia by Orca Security
- AWS Security
- DevSecOps: Insecure Docker Registry
- On-Demand: DevSecOps: Beginner Edition Bootcamp
- On-Demand: Cloud Security: AWS Edition Bootcamp
- On-Demand: Container Security: Beginner Edition Bootcamp
- Attacking and Defending AWS
- CCSP – Certified Cloud Security Professional
-
Container
- Falco
- mkit
- Open policy agent - based control tool.
Programming Languages
Categories
Sub Categories
Keywords
aws
33
security
26
cloud
17
aws-security
16
cloud-security
16
azure
12
security-tools
12
gcp
11
devsecops
9
kubernetes
9
terraform
7
iam
7
cloudsecurity
6
compliance
6
devops
6
azure-security
5
pentesting
4
aws-iam
4
infrastructure-as-code
4
google-cloud-platform
4
security-audit
4
lambda
4
cspm
4
cloud-native
4
serverless
3
google
3
containers
3
python
3
gke
3
gcp-security
3
penetration-testing
3
salesforce
3
vulnerability-scanners
3
k8s
2
aws-lambda
2
attack-surface-management
2
eks
2
etl
2
serverless-security
2
go
2
s3-bucket
2
hacking
2
cnapp
2
aws-audit
2
infosec
2
dfir
2
cloud-auditing
2
cloud-compliance-reporting
2
golang
2
hardening
2