#
cloudsecurity
Here are 38 public repositories matching this topic...
Kubernetes Goat 🐐 is a "Vulnerable by Design" Kubernetes Cluster. Designed to be an intentionally vulnerable cluster environment to learn and practice Kubernetes security 🔐
docker
kubernetes
infrastructure
security
microservices
helm
container
hacking
owasp
cloud-native
pentesting
cloudsecurity
devsecops
cloud-security
container-security
vulnerable-app
kubernetes-security
kubernetes-goat
-
Updated
Aug 6, 2021 - HTML
IAM Least Privilege Policy Generator
-
Updated
Jan 4, 2022 - Python
kubernetes
devops
gitlab
serverless
secops
k8s
cloud-native
security-vulnerability
network-visualization
vulnerability-management
observability
log4j2
threat-analysis
security-tools
cloudsecurity
devsecops
vulnerability-scanning
registry-scanning
cwpp
-
Updated
Jan 4, 2022 - Go
A tool for quickly evaluating IAM permissions in AWS.
-
Updated
Dec 3, 2021 - Python
hartzell
commented
Nov 19, 2021
We avoid automation that changes the source tree without human feedback but this seems to be the model that yor currently uses (e.g. the GitHub action that adds tags to all the things and then commits them to the branch).
In our workflow (we do this with terraform fmt and black for python) we expect the branch as it is committed/pushed by the user to be correct and we have tests that run to
Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)
-
Updated
Sep 27, 2021 - Python
Cloudlist is a tool for listing Assets from multiple Cloud Providers.
-
Updated
Dec 21, 2021 - Go
rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.
-
Updated
Apr 22, 2021 - Go
rezoan
commented
Jul 14, 2021
In my ubuntu 20.04.2.0, i have python 2.7.18 and pip3 20.0.2.
I was trying to install prancer-basic via pip3 install prancer-basic
It get installed successfully with below warning:
WARNING: The scripts populate_json, prancer, register_key_in_azure_vault, terraform_to_json and validator are installed in '/home/r4redu/.local/bin' which is not on PATH.
Consider adding this director
Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.
aws
digitalocean
serverless
azure
api-gateway
dynamodb
lambda-functions
gcp
oracle
cybersecurity
serverless-framework
cyber-security
aws-security
cloudsecurity
cloud-security
azure-security
gcp-security
shadowrisk
shadow-risk
-
Updated
Oct 6, 2021 - Python
A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat landscape such as cloud ransomware and supply chain attacks.
aws
security
security-audit
cloud
gcp
security-vulnerability
security-scanner
security-tools
cloudsecurity
security-testing
cspm
-
Updated
Dec 23, 2021 - Java
Cfngoat is Bridgecrew's "Vulnerable by Design" Cloudformation repository. Cfngoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
-
Updated
Nov 19, 2021
A schema and set of tools for using SQL to query cloud infrastructure.
aws
security
postgres
sql
iam
secops
cloud-infrastructure
cmdb
infosec
database-schema
aws-security
security-groups
security-tools
cloudsecurity
devsecops
cloud-security
compliance-as-code
compliance-automation
cspm
infrastructure-as-deployed
-
Updated
Oct 8, 2021 - Python
Static analysis for CloudFormation templates to identify common misconfiguration
go
golang
aws
cloudformation
static-analysis
aws-cloudformation
hacktoberfest
aws-sam
cloudsecurity
aws-sam-cli
-
Updated
Jan 4, 2022 - Go
A Lambda-powered Security Orchestration framework for AWS GuardDuty
aws
cloud
aws-lambda
incident-response
cybersecurity
siem
threatintel
aws-security
blueteam
cloudsecurity
soar
aws-guardduty
-
Updated
Dec 15, 2019 - Python
Terraform provider for Policy Sentry (IAM least privilege generator and auditor)
-
Updated
Dec 20, 2021 - Go
This repository contains links to awesome security articles.
-
Updated
Nov 30, 2021
A carefully curated list of open source projects aimed at improving your AWS security posture!
-
Updated
May 30, 2019
DeepLint is a Security-as-Code framework for securing and optimizing cloud environments.
-
Updated
Nov 23, 2021 - TypeScript
Use cloud cameras to connect all your existing and new IP cameras in one cloud video surveillance system. Watch live and recorded video from anywhere, receive alerts for events and analyze video with AI.
cloud
ai
camera
cctv
video-player
nvr
ios-app
developer
developer-tools
dvr
ipcamera
systems-engineering
security-tools
cloudsecurity
androiddeveloper
videoanalysis
videosurveillance
cloudvideo
videoserver
-
Updated
Dec 10, 2021 - JavaScript
Benchmarks how you are handling your AWS Secrets including encrypted parameters, secretsmanager and access keys
-
Updated
Apr 29, 2021 - Python
AWS CloudFormation templates and Python code for AWS blog post on how to automate IAM credential reports at scale across AWS.
-
Updated
Jul 13, 2021 - Python
Multi Cloud Antivirus Scanning API using YARA and CLAMAV for AWS S3, Azure Blob Storage and GCP Cloud Storage
aws
security
cloud
azure
rest-api
gcp
cybersecurity
api-rest
infosec
antivirus
cyber-security
yara
clamav-scanning
security-tools
cloudsecurity
azure-blob-storage
yara-scanner
clamav-antivirus
gcp-cloud-storage
s3scanner
-
Updated
Sep 26, 2021 - Go
HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enabling you to pentest Vulnerabilities within, and hence, gain a better understanding of what could go wrong and why!!
terraform
cybersecurity
aws-security
cloudsecurity
cloud-security
cybersecurity-incidents
cybersecurity-education
hazprone
-
Updated
Nov 4, 2021 - HCL
Verifiable Operations on Outsourced Sets
-
Updated
Oct 8, 2018 - C++
The SaaS CTO Security Checklist Redux, The DevOps Security Checklist, and The Personal Infosec & Security Checklist
checklist
security
security-audit
saas
secops
cybersecurity
startup
infosec
security-checklist
cloudsecurity
devsecops
security-checklists
personal-security
cspm
saas-security
-
Updated
Jul 9, 2021
Automated ELK Stack Deployment
-
Updated
Dec 6, 2021 - Shell
A cloud monitoring system by configuring an ELK Stack server.
docker
ansible
elasticsearch
cloud
kibana
virtual-machine
cloud-computing
metricbeat
elk-stack
cloudsecurity
-
Updated
Sep 20, 2021
List of open source frameworks, tools, for AWS security: defensive, offensive, auditing, DFIR, etc.
-
Updated
Aug 18, 2020 - Shell
Improve this page
Add a description, image, and links to the cloudsecurity topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the cloudsecurity topic, visit your repo's landing page and select "manage topics."
Enhancement Request
Other security scanning tools (e.g.
checkovandtfsec) have a--soft-failflag or equivalent option that allows you to always exit with 0 status.Extremely useful when running the tool without halting a pipeline for example.
I currently use a workaround, but something more concrete would be very desira