awesome-DevOpsSec

Archiving for DevOpsSec resources
https://github.com/zer0-kr/awesome-DevOpsSec

Last synced: 3 days ago
JSON representation

Resources
Tools
- AWS
  - prowler - Security Vulnerability Scanner
  - steampipe - zero-ETL solution for getting data directly from APIs and services
  - CloudSploit - Cloud Security Posture Management(CSPM)
  - pacu - AWS exploitation framework
  - my-arsenal-of-aws-security-tools - List of open source tools for AWS security
  - check_imds - IMDSv1 Scanner
- Kubernetes
  - Trivy - Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes
  - kube-bench - Checks whether Kubernetes is deployed according to CIS Kubernetes Benchmark
  - kube-hunter - Hunt for security weaknesses in Kubernetes clusters
  - managed-kubernetes-auditing-toolkit - identifying common security issues in EKS
  - Kubescape - Kubernetes security platform for your clusters, CI/CD pipelines, and IDE
  - Falco - Cloud Native Runtime Security
  - Clair - Vulnerability Static Analysis for Containers

Programming Languages

Go 6 Python 6 HCL 3 HTML 2 C++ 1 Shell 1 JavaScript 1 CSS 1

Categories

Resources 56 Tools 13

Sub Categories

Challenges 13 Documents 9 Articles 9 Kubernetes 7 AWS 6 Workshops 5 Blogs 5 Conferences 5 Vulnerabilities 4 etc 3 Trannings 3

Keywords

security 9 kubernetes 8 devsecops 5 aws 5 gcp 4 azure 4 cloud 4 containers 3 security-tools 3 kubernetes-security 3 aws-security 3 docker 3 go 2 terraform 2 oci 2 dfir 2 incident-response 2 mitre-attack 2 cis-benchmark 2 golang 2 devops 2 cspm 2 security-audit 2 python 2 iam 2 redteam 2 cloud-native 2 vulnerability-detection 2 cloud-security 2 vulnerabilities 2 cloudpentest 1 blueteam 1 hardening 1 gdpr 1 forensics 1 compliance 1 cloudsecurity 1 container 1 container-security 1 cloud-pentesting 1 thehive 1 response-playbooks 1 hacking 1 infrastructure 1 k8s 1 amitt 1 cloud-attack 1 goat 1 gcp-security 1 azure-security 1