awesome-cloud-security

cloud security guide

A curated collection of resources and examples for improving cloud security

A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.

GitHub

581 stars
18 watching
111 forks
last commit: about 1 year ago
Linked from 2 awesome lists

awesomeawesome-listawsaws-securitycloudcloud-securitydata-loss-preventiondlpelasticsearchgoogle-cloud-securityhacktoberfesthacktoberfest2023hacktoberfestcebuinformation-securityloggingnistoracle-cloud-securitysecuritysecurity-standardswaf

Awesome Cloud Security / Public Cloud Governance / URL Services

https://doc-{user_provided}-{random_id}.{region}.cloudsearch.amazonaws.com
ftp://s-{random_id}.server.transfer.{region}.amazonaws.com s
https://b-{random_id}-{1,2}.mq.{region}.amazonaws.com:8162

Awesome Cloud Security / Public Cloud Governance / MultiCloud Governance

Cloud Custodian 5,467 9 days ago
CloudQuary 5,882 1 day ago
Cloudsploit 3,355 9 days ago
ManageIQ by RedHat 1,347 8 days ago
Mist.io 1,868 6 months ago
NeuVector 1,107 7 days ago
Triton by Joyent 1,316 3 months ago

Awesome Cloud Security / Kubernetes Operators / Aqua

Aqua Security Operator
Starboard Operator

Awesome Cloud Security / Kubernetes Operators / Misc

Anchore - Anchore Engine Operator
Falco Security - Falco Operator
Quay - Project Quay Container Security
Snyk - Snyk Operator
Splunk - Splunk Operator for Kubernetes
Sysdig - Sysdig Agent Operator

Awesome Cloud Security / Container Tools / Anchore

Anchore Engine 1,587 almost 2 years ago
Grype 8,861 1 day ago
Kai 63 1 day ago
Syft 6,287 1 day ago

Awesome Cloud Security / Container Tools / Aqua

Cloudsploit 3,355 9 days ago
Kube-Bench 7,078 5 days ago
Kube-Hunter 4,765 8 months ago
Kubectl-who-can 848 4 months ago
Trivy 23,786 1 day ago

Awesome Cloud Security / Container Tools / Misc

Docker - Docker Bench for Security 9,146 about 1 month ago
Elias - Dagda 1,159 over 1 year ago
Falco Security - Falco 7,412 1 day ago
Harbor - Harbor 24,175 9 days ago
Quay - Clair 10,359 10 days ago
Snyk - Snyk 4,952 8 days ago
vchinnipilli - Kubestriker 991 8 months ago

Awesome Cloud Security / Cloud Security Standards

ISO/IEC 27017:2015
ISO/IEC 27018:2019
MTCS SS 584
CCM
NIST 800-53

Awesome Cloud Security / Learning / Blogs

AWS Security
Azure Security
Dark Reading

Awesome Cloud Security / Learning / Courses / Oracle

Oracle Cloud Security Administrator

Awesome Cloud Security / Learning / Courses / A Cloud Guru / Learning Paths

AWS Security Path
Azure Security Path
GCP Security Path

Awesome Cloud Security / Learning / Labs

AWS Workshops

Awesome Cloud Security / Learning / Labs / AWS Workshops

AWS Identity: Using Amazon Cognito for serverless consumer apps
AWS Network Firewall Workshop
AWS Networking Workshop
Access Delegation
Amazon VPC Endpoint Workshop
Build a Vulnerability Management Program Using AWS for AWS
Data Discovery and Classification with Amazon Macie
Data Protection
DevSecOps - Integrating security into your pipeline
Disaster Recovery on AWS
Finding and addressing Network Misconfigurations on AWS
Firewall Manager Service - WAF Policy
Getting Hands on with Amazon GuardDuty
Hands on Network Firewall Workshop
Implementing DDoS Resiliency
Infrastructure Identity on AWS
Integrating security into your container pipeline
Integration, Prioritization, and Response with AWS Security Hub
Introduction to WAF
Permission boundaries: how to delegate permissions on AWS
Protecting workloads on AWS from the instance to the edge
Scaling threat detection and response on AWS
Serverless Identity

Awesome Cloud Security / Learning / Labs

PagerDuty Training Lab

Awesome Cloud Security / Learning / Labs / PagerDuty Training Lab

PagerDuty Training GitHub 411 over 1 year ago
PagerDuty Training for Engineers
PagerDuty Training for Everyone: Part 1
PagerDuty Training for Everyone: Part 2

Awesome Cloud Security / Learning / Podcasts

Azure DevOps Podcast
Cloud Security Podcast by Google
Security Now

Awesome Cloud Security / Learning / Vulnerable By Design

CloudGoat by Rhino Security Labs 2,976 3 days ago
ServerlessGoat by OWASP 320 4 months ago
WrongSecrets by OWASP 1,236 6 days ago

Awesome Cloud Security / Certifications / Cloud Vendors

AWS Certified Security Specialty
Azure Security Engineer Associate
Google Professional Cloud Security Engineer
Oracle Cloud Platform Identity and Security Management

Awesome Cloud Security / Certifications / ISC

CCSP - Certified Cloud Security Professional

Awesome Cloud Security / Certifications / CSA

CCSK - Certificate of Cloud Security Knowledge
CCAK - Certificate of Cloud Auditing Knowledge

Awesome Cloud Security / Projects / Alerting

411 by Etsy 971 over 1 year ago
ElastAlert by Yelp 8,000 4 months ago
StreamAlert by Airbnb 2,861 about 1 year ago

Awesome Cloud Security / Projects / Automated Security Assessment

Prowler 10,867 1 day ago
CloudFox 1,953 about 1 month ago
SkyArk 874 about 2 years ago
Pacu 4,400 9 days ago
Bucket Finder
Boto3
Principal Mapper 1,433 4 months ago
ScoutSuite 6,751 4 days ago
s3_objects_check 74 over 2 years ago
cloudsplaining 2,000 7 days ago
weirdAAL 781 over 1 year ago
cloudmapper 6,006 4 months ago
NetSPI/AWS_Consoler 220 over 4 years ago

Awesome Cloud Security / Projects / Benchmarking

AWS Security Benchmark 617 almost 5 years ago

Awesome Cloud Security / Projects / Data Loss Prevention

Git Secrets by AWS Labs 12,442 7 months ago

Awesome Cloud Security / Projects / Firewall Management / globaldatanet

AWS Firewall Factory 236 3 days ago

Awesome Cloud Security / Projects / Identity and Access Management / AWS Labs

AWS IAM Generator 240 over 3 years ago

Awesome Cloud Security / Projects / Identity and Access Management / Duo Labs

Parliament 1,046 4 months ago
CloudTracker 887 almost 3 years ago

Awesome Cloud Security / Projects / Identity and Access Management / Netflix

Aardvark 473 29 days ago
ConsoleMe 3,145 5 months ago
PolicyUniverse 428 5 months ago
Repokid 1,120 over 1 year ago

Awesome Cloud Security / Projects / Identity and Access Management / Pinterest

Knox 1,233 11 days ago

Awesome Cloud Security / Projects / Identity and Access Management / Salesforce

Policy Sentry 2,019 7 days ago
CloudSplaining 2,000 7 days ago
AWS-AllowLister 224 over 1 year ago
Terraform for Policy Guru 30 about 1 year ago

Awesome Cloud Security / Projects / Identity and Access Management / welldone.cloud

aws-lint-iam-policies 111 23 days ago

Awesome Cloud Security / Projects / Identity and Access Management / Misc

AWS Missing Tools by CloudAvail 1,338 over 5 years ago
Awesome IAM List 1,758 18 days ago
Enumerate IAM by Andres Riancho 1,098 10 months ago
Kubernetes AWS IAM Authenticator by Kubernetes SIG 2,212 8 days ago

Awesome Cloud Security / Projects / Incident Response / AWS

AWS Incident Response Playbooks by AWS Samples 926 6 months ago
AWS Security Hub Automated Response and Remediation 398 8 days ago

Awesome Cloud Security / Projects / Incident Response / Netflix

Dispatch by Netflix 5,122 2 days ago

Awesome Cloud Security / Projects / Incident Response / PagerDuty

PagerDuty Automated Remediation Docs 7 almost 2 years ago
PagerDuty Business Response Docs 8 almost 3 years ago
PagerDuty DevSecOps Docs 13 almost 3 years ago
PagerDuty Full Case Ownership Docs 5 almost 3 years ago
PagerDuty Full Service Ownership Docs 22 over 1 year ago
PagerDuty Going OnCall Docs 7 over 2 years ago
PagerDuty Incident Response Docs 1,022 over 1 year ago
PagerDuty Operational Review Docs 20 almost 3 years ago
PagerDuty PostMortem Docs 65 over 2 years ago
PagerDuty Retrospectives Docs 9 about 2 years ago
PagerDuty Stakeholder Communication Docs 9 almost 2 years ago

Awesome Cloud Security / Projects / Incident Response / Velocidex

Velociraptor 2,986 2 days ago

Awesome Cloud Security / Projects / Spring

Spring Cloud Security 27 11 days ago

Awesome Cloud Security / Projects / Threat modeling

ThreatModel for Amazon S3 151 about 1 year ago Library of all the attack scenarios on Amazon S3 and how to mitigate them, following a risk-based approach

Awesome Cloud Security / Examples / Ex. Automated Security Assessment

AWS Config Rules Repository 1,612 2 months ago
AWS Inspector Agent Autodeploy 28 over 6 years ago
AWS Inspector Auto Remediation 58 over 6 years ago
AWS Inspector Lambda Finding Processor 39 over 6 years ago

Awesome Cloud Security / Examples / Ex. Identity and Access Management

Amazon Cognito Streams connector for Amazon Redshift 9 over 4 years ago

Awesome Cloud Security / Examples / Ex. Logging

AWS Centralized Logging 253 9 months ago
AWS Config Snapshots to ElasticSearch 70 over 4 years ago
AWS CloudWatch Events Monitor Security Groups 25 about 5 years ago

Awesome Cloud Security / Examples / Ex. Web Application Firewall

AWS WAF Sample 512 almost 5 years ago
AWS WAF Security Automations 857 26 days ago

Awesome Cloud Security / Misc / Other Awesome Lists

Awesome Cloud Cost Control 41 about 1 year ago
Awesome Cloud Native Security 309 about 1 year ago
Awesome Cloud Security 581 about 1 year ago
Awesome IAM List 1,758 18 days ago
Awesome Incident Response List 7,682 4 months ago
Awesome Shodan Queries 5,858 6 months ago

Backlinks from these awesome lists:

More related projects: