awesome-DevOpsSec

Archiving for DevOpsSec resources
https://github.com/zer0-kr/awesome-DevOpsSec

Last synced: 8 days ago
JSON representation

Resources
🎤 컨퍼런스
- Kubernetes Security Best Practices
- AWS 리소스 허브
Tools
- AWS
  - check_imds - IMDSv1 Scanner
  - steampipe - zero-ETL solution for getting data directly from APIs and services
  - my-arsenal-of-aws-security-tools - List of open source tools for AWS security
  - pacu - AWS exploitation framework
  - prowler - Security Vulnerability Scanner
  - CloudSploit - Cloud Security Posture Management(CSPM)
- Kubernetes
  - Trivy - Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes
  - Clair - Vulnerability Static Analysis for Containers
  - Falco - Cloud Native Runtime Security
  - kube-bench - Checks whether Kubernetes is deployed according to CIS Kubernetes Benchmark
  - Kubescape - Kubernetes security platform for your clusters, CI/CD pipelines, and IDE
  - kube-hunter - Hunt for security weaknesses in Kubernetes clusters
  - managed-kubernetes-auditing-toolkit - identifying common security issues in EKS
🚨 취약점 DB
- aws-customer-security-incidents
- Cloud Security Attacks
📄 가이드 & 문서
- AWS FSBP Standard
📰 아티클
- 15 Kubernetes Mistakes Side Effects Chart
기여하기
- ![Star on GitHub - kr/awesome-DevOpsSec)
📝 블로그
- Rhino Security Labs Blog
📚 트레이닝
- Certified Kubernetes Security Specialist

Programming Languages

Python 6 Go 6 HCL 3 HTML 2 CSS 1 JavaScript 1 Shell 1 C++ 1

Categories

Resources 58 Tools 13 🚨 취약점 DB 2 🎤 컨퍼런스 2 📄 가이드 & 문서 1 📰 아티클 1 📚 트레이닝 1 📝 블로그 1 기여하기 1

Sub Categories

Challenges 16 Documents 9 Articles 9 Kubernetes 7 AWS 6 Workshops 5 Conferences 5 Blogs 4 Vulnerabilities 4 etc 3 Trannings 3

Keywords

security 9 kubernetes 8 aws 6 devsecops 5 azure 5 gcp 5 cloud 4 containers 3 docker 3 security-tools 3 cspm 3 aws-security 3 kubernetes-security 3 redteam 3 cloud-attack 2 incident-response 2 oci 2 iam 2 dfir 2 security-audit 2 vulnerability-detection 2 cloudsecurity 2 cloudpentest 2 cloud-security 2 vulnerabilities 2 mitre-attack 2 cloud-native 2 devops 2 cloud-pentesting 2 terraform 2 golang 2 go 2 python 2 cis-benchmark 2 runtime-security 1 cis 1 goat 1 cnapp 1 gcp-security 1 etl 1 azure-security 1 postgresql 1 postgresql-fdw 1 managed-kubernetes 1 eks 1 aws-eks 1 thehive 1 iac 1 infrastructure-as-code 1 response-playbooks 1