awesome-cloud-security
cloud security guide
A curated collection of resources and examples for improving cloud security
A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.
581 stars
18 watching
111 forks
last commit: about 1 year ago
Linked from 2 awesome lists
awesomeawesome-listawsaws-securitycloudcloud-securitydata-loss-preventiondlpelasticsearchgoogle-cloud-securityhacktoberfesthacktoberfest2023hacktoberfestcebuinformation-securityloggingnistoracle-cloud-securitysecuritysecurity-standardswaf
Awesome Cloud Security / Public Cloud Governance / URL Services | |||
https://doc-{user_provided}-{random_id}.{region}.cloudsearch.amazonaws.com | |||
ftp://s-{random_id}.server.transfer.{region}.amazonaws.com | s | ||
https://b-{random_id}-{1,2}.mq.{region}.amazonaws.com:8162 | |||
Awesome Cloud Security / Public Cloud Governance / MultiCloud Governance | |||
Cloud Custodian | 5,467 | 9 days ago | |
CloudQuary | 5,882 | 1 day ago | |
Cloudsploit | 3,355 | 9 days ago | |
ManageIQ by RedHat | 1,347 | 8 days ago | |
Mist.io | 1,868 | 6 months ago | |
NeuVector | 1,107 | 7 days ago | |
Triton by Joyent | 1,316 | 3 months ago | |
Awesome Cloud Security / Kubernetes Operators / Aqua | |||
Aqua Security Operator | |||
Starboard Operator | |||
Awesome Cloud Security / Kubernetes Operators / Misc | |||
Anchore - Anchore Engine Operator | |||
Falco Security - Falco Operator | |||
Quay - Project Quay Container Security | |||
Snyk - Snyk Operator | |||
Splunk - Splunk Operator for Kubernetes | |||
Sysdig - Sysdig Agent Operator | |||
Awesome Cloud Security / Container Tools / Anchore | |||
Anchore Engine | 1,587 | almost 2 years ago | |
Grype | 8,861 | 1 day ago | |
Kai | 63 | 1 day ago | |
Syft | 6,287 | 1 day ago | |
Awesome Cloud Security / Container Tools / Aqua | |||
Cloudsploit | 3,355 | 9 days ago | |
Kube-Bench | 7,078 | 5 days ago | |
Kube-Hunter | 4,765 | 8 months ago | |
Kubectl-who-can | 848 | 4 months ago | |
Trivy | 23,786 | 1 day ago | |
Awesome Cloud Security / Container Tools / Misc | |||
Docker - Docker Bench for Security | 9,146 | about 1 month ago | |
Elias - Dagda | 1,159 | over 1 year ago | |
Falco Security - Falco | 7,412 | 1 day ago | |
Harbor - Harbor | 24,175 | 9 days ago | |
Quay - Clair | 10,359 | 10 days ago | |
Snyk - Snyk | 4,952 | 8 days ago | |
vchinnipilli - Kubestriker | 991 | 8 months ago | |
Awesome Cloud Security / Cloud Security Standards | |||
ISO/IEC 27017:2015 | |||
ISO/IEC 27018:2019 | |||
MTCS SS 584 | |||
CCM | |||
NIST 800-53 | |||
Awesome Cloud Security / Learning / Blogs | |||
AWS Security | |||
Azure Security | |||
Dark Reading | |||
Awesome Cloud Security / Learning / Courses / Oracle | |||
Oracle Cloud Security Administrator | |||
Awesome Cloud Security / Learning / Courses / A Cloud Guru / Learning Paths | |||
AWS Security Path | |||
Azure Security Path | |||
GCP Security Path | |||
Awesome Cloud Security / Learning / Labs | |||
AWS Workshops | |||
Awesome Cloud Security / Learning / Labs / AWS Workshops | |||
AWS Identity: Using Amazon Cognito for serverless consumer apps | |||
AWS Network Firewall Workshop | |||
AWS Networking Workshop | |||
Access Delegation | |||
Amazon VPC Endpoint Workshop | |||
Build a Vulnerability Management Program Using AWS for AWS | |||
Data Discovery and Classification with Amazon Macie | |||
Data Protection | |||
DevSecOps - Integrating security into your pipeline | |||
Disaster Recovery on AWS | |||
Finding and addressing Network Misconfigurations on AWS | |||
Firewall Manager Service - WAF Policy | |||
Getting Hands on with Amazon GuardDuty | |||
Hands on Network Firewall Workshop | |||
Implementing DDoS Resiliency | |||
Infrastructure Identity on AWS | |||
Integrating security into your container pipeline | |||
Integration, Prioritization, and Response with AWS Security Hub | |||
Introduction to WAF | |||
Permission boundaries: how to delegate permissions on AWS | |||
Protecting workloads on AWS from the instance to the edge | |||
Scaling threat detection and response on AWS | |||
Serverless Identity | |||
Awesome Cloud Security / Learning / Labs | |||
PagerDuty Training Lab | |||
Awesome Cloud Security / Learning / Labs / PagerDuty Training Lab | |||
PagerDuty Training GitHub | 411 | over 1 year ago | |
PagerDuty Training for Engineers | |||
PagerDuty Training for Everyone: Part 1 | |||
PagerDuty Training for Everyone: Part 2 | |||
Awesome Cloud Security / Learning / Podcasts | |||
Azure DevOps Podcast | |||
Cloud Security Podcast by Google | |||
Security Now | |||
Awesome Cloud Security / Learning / Vulnerable By Design | |||
CloudGoat by Rhino Security Labs | 2,976 | 3 days ago | |
ServerlessGoat by OWASP | 320 | 4 months ago | |
WrongSecrets by OWASP | 1,236 | 6 days ago | |
Awesome Cloud Security / Certifications / Cloud Vendors | |||
AWS Certified Security Specialty | |||
Azure Security Engineer Associate | |||
Google Professional Cloud Security Engineer | |||
Oracle Cloud Platform Identity and Security Management | |||
Awesome Cloud Security / Certifications / ISC | |||
CCSP - Certified Cloud Security Professional | |||
Awesome Cloud Security / Certifications / CSA | |||
CCSK - Certificate of Cloud Security Knowledge | |||
CCAK - Certificate of Cloud Auditing Knowledge | |||
Awesome Cloud Security / Projects / Alerting | |||
411 by Etsy | 971 | over 1 year ago | |
ElastAlert by Yelp | 8,000 | 4 months ago | |
StreamAlert by Airbnb | 2,861 | about 1 year ago | |
Awesome Cloud Security / Projects / Automated Security Assessment | |||
Prowler | 10,867 | 1 day ago | |
CloudFox | 1,953 | about 1 month ago | |
SkyArk | 874 | about 2 years ago | |
Pacu | 4,400 | 9 days ago | |
Bucket Finder | |||
Boto3 | |||
Principal Mapper | 1,433 | 4 months ago | |
ScoutSuite | 6,751 | 4 days ago | |
s3_objects_check | 74 | over 2 years ago | |
cloudsplaining | 2,000 | 7 days ago | |
weirdAAL | 781 | over 1 year ago | |
cloudmapper | 6,006 | 4 months ago | |
NetSPI/AWS_Consoler | 220 | over 4 years ago | |
Awesome Cloud Security / Projects / Benchmarking | |||
AWS Security Benchmark | 617 | almost 5 years ago | |
Awesome Cloud Security / Projects / Data Loss Prevention | |||
Git Secrets by AWS Labs | 12,442 | 7 months ago | |
Awesome Cloud Security / Projects / Firewall Management / globaldatanet | |||
AWS Firewall Factory | 236 | 3 days ago | |
Awesome Cloud Security / Projects / Identity and Access Management / AWS Labs | |||
AWS IAM Generator | 240 | over 3 years ago | |
Awesome Cloud Security / Projects / Identity and Access Management / Duo Labs | |||
Parliament | 1,046 | 4 months ago | |
CloudTracker | 887 | almost 3 years ago | |
Awesome Cloud Security / Projects / Identity and Access Management / Netflix | |||
Aardvark | 473 | 29 days ago | |
ConsoleMe | 3,145 | 5 months ago | |
PolicyUniverse | 428 | 5 months ago | |
Repokid | 1,120 | over 1 year ago | |
Awesome Cloud Security / Projects / Identity and Access Management / Pinterest | |||
Knox | 1,233 | 11 days ago | |
Awesome Cloud Security / Projects / Identity and Access Management / Salesforce | |||
Policy Sentry | 2,019 | 7 days ago | |
CloudSplaining | 2,000 | 7 days ago | |
AWS-AllowLister | 224 | over 1 year ago | |
Terraform for Policy Guru | 30 | about 1 year ago | |
Awesome Cloud Security / Projects / Identity and Access Management / welldone.cloud | |||
aws-lint-iam-policies | 111 | 23 days ago | |
Awesome Cloud Security / Projects / Identity and Access Management / Misc | |||
AWS Missing Tools by CloudAvail | 1,338 | over 5 years ago | |
Awesome IAM List | 1,758 | 18 days ago | |
Enumerate IAM by Andres Riancho | 1,098 | 10 months ago | |
Kubernetes AWS IAM Authenticator by Kubernetes SIG | 2,212 | 8 days ago | |
Awesome Cloud Security / Projects / Incident Response / AWS | |||
AWS Incident Response Playbooks by AWS Samples | 926 | 6 months ago | |
AWS Security Hub Automated Response and Remediation | 398 | 8 days ago | |
Awesome Cloud Security / Projects / Incident Response / Netflix | |||
Dispatch by Netflix | 5,122 | 2 days ago | |
Awesome Cloud Security / Projects / Incident Response / PagerDuty | |||
PagerDuty Automated Remediation Docs | 7 | almost 2 years ago | |
PagerDuty Business Response Docs | 8 | almost 3 years ago | |
PagerDuty DevSecOps Docs | 13 | almost 3 years ago | |
PagerDuty Full Case Ownership Docs | 5 | almost 3 years ago | |
PagerDuty Full Service Ownership Docs | 22 | over 1 year ago | |
PagerDuty Going OnCall Docs | 7 | over 2 years ago | |
PagerDuty Incident Response Docs | 1,022 | over 1 year ago | |
PagerDuty Operational Review Docs | 20 | almost 3 years ago | |
PagerDuty PostMortem Docs | 65 | over 2 years ago | |
PagerDuty Retrospectives Docs | 9 | about 2 years ago | |
PagerDuty Stakeholder Communication Docs | 9 | almost 2 years ago | |
Awesome Cloud Security / Projects / Incident Response / Velocidex | |||
Velociraptor | 2,986 | 2 days ago | |
Awesome Cloud Security / Projects / Spring | |||
Spring Cloud Security | 27 | 11 days ago | |
Awesome Cloud Security / Projects / Threat modeling | |||
ThreatModel for Amazon S3 | 151 | about 1 year ago | Library of all the attack scenarios on Amazon S3 and how to mitigate them, following a risk-based approach |
Awesome Cloud Security / Examples / Ex. Automated Security Assessment | |||
AWS Config Rules Repository | 1,612 | 2 months ago | |
AWS Inspector Agent Autodeploy | 28 | over 6 years ago | |
AWS Inspector Auto Remediation | 58 | over 6 years ago | |
AWS Inspector Lambda Finding Processor | 39 | over 6 years ago | |
Awesome Cloud Security / Examples / Ex. Identity and Access Management | |||
Amazon Cognito Streams connector for Amazon Redshift | 9 | over 4 years ago | |
Awesome Cloud Security / Examples / Ex. Logging | |||
AWS Centralized Logging | 253 | 9 months ago | |
AWS Config Snapshots to ElasticSearch | 70 | over 4 years ago | |
AWS CloudWatch Events Monitor Security Groups | 25 | about 5 years ago | |
Awesome Cloud Security / Examples / Ex. Web Application Firewall | |||
AWS WAF Sample | 512 | almost 5 years ago | |
AWS WAF Security Automations | 857 | 26 days ago | |
Awesome Cloud Security / Misc / Other Awesome Lists | |||
Awesome Cloud Cost Control | 41 | about 1 year ago | |
Awesome Cloud Native Security | 309 | about 1 year ago | |
Awesome Cloud Security | 581 | about 1 year ago | |
Awesome IAM List | 1,758 | 18 days ago | |
Awesome Incident Response List | 7,682 | 4 months ago | |
Awesome Shodan Queries | 5,858 | 6 months ago |