awesome-cloud-security
cloud security guide
A curated collection of resources and examples for improving cloud security
A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.
581 stars
18 watching
111 forks
last commit: about 1 year ago
Linked from 2 awesome lists
awesomeawesome-listawsaws-securitycloudcloud-securitydata-loss-preventiondlpelasticsearchgoogle-cloud-securityhacktoberfesthacktoberfest2023hacktoberfestcebuinformation-securityloggingnistoracle-cloud-securitysecuritysecurity-standardswaf
Awesome Cloud Security / Public Cloud Governance / URL Services | |||
| https://doc-{user_provided}-{random_id}.{region}.cloudsearch.amazonaws.com | |||
| ftp://s-{random_id}.server.transfer.{region}.amazonaws.com | s | ||
| https://b-{random_id}-{1,2}.mq.{region}.amazonaws.com:8162 | |||
Awesome Cloud Security / Public Cloud Governance / MultiCloud Governance | |||
| Cloud Custodian | 5,460 | 7 days ago | |
| CloudQuary | 5,877 | 6 days ago | |
| Cloudsploit | 3,355 | 6 days ago | |
| ManageIQ by RedHat | 1,347 | 6 days ago | |
| Mist.io | 1,868 | 6 months ago | |
| NeuVector | 1,107 | 5 days ago | |
| Triton by Joyent | 1,316 | 3 months ago | |
Awesome Cloud Security / Kubernetes Operators / Aqua | |||
| Aqua Security Operator | |||
| Starboard Operator | |||
Awesome Cloud Security / Kubernetes Operators / Misc | |||
| Anchore - Anchore Engine Operator | |||
| Falco Security - Falco Operator | |||
| Quay - Project Quay Container Security | |||
| Snyk - Snyk Operator | |||
| Splunk - Splunk Operator for Kubernetes | |||
| Sysdig - Sysdig Agent Operator | |||
Awesome Cloud Security / Container Tools / Anchore | |||
| Anchore Engine | 1,586 | almost 2 years ago | |
| Grype | 8,812 | 6 days ago | |
| Kai | 63 | 6 days ago | |
| Syft | 6,248 | 6 days ago | |
Awesome Cloud Security / Container Tools / Aqua | |||
| Cloudsploit | 3,355 | 6 days ago | |
| Kube-Bench | 7,069 | 6 days ago | |
| Kube-Hunter | 4,763 | 8 months ago | |
| Kubectl-who-can | 846 | 4 months ago | |
| Trivy | 23,679 | 7 days ago | |
Awesome Cloud Security / Container Tools / Misc | |||
| Docker - Docker Bench for Security | 9,146 | about 1 month ago | |
| Elias - Dagda | 1,159 | over 1 year ago | |
| Falco Security - Falco | 7,394 | 10 days ago | |
| Harbor - Harbor | 24,175 | 6 days ago | |
| Quay - Clair | 10,359 | 8 days ago | |
| Snyk - Snyk | 4,952 | 6 days ago | |
| vchinnipilli - Kubestriker | 991 | 8 months ago | |
Awesome Cloud Security / Cloud Security Standards | |||
| ISO/IEC 27017:2015 | |||
| ISO/IEC 27018:2019 | |||
| MTCS SS 584 | |||
| CCM | |||
| NIST 800-53 | |||
Awesome Cloud Security / Learning / Blogs | |||
| AWS Security | |||
| Azure Security | |||
| Dark Reading | |||
Awesome Cloud Security / Learning / Courses / Oracle | |||
| Oracle Cloud Security Administrator | |||
Awesome Cloud Security / Learning / Courses / A Cloud Guru / Learning Paths | |||
| AWS Security Path | |||
| Azure Security Path | |||
| GCP Security Path | |||
Awesome Cloud Security / Learning / Labs | |||
| AWS Workshops | |||
Awesome Cloud Security / Learning / Labs / AWS Workshops | |||
| AWS Identity: Using Amazon Cognito for serverless consumer apps | |||
| AWS Network Firewall Workshop | |||
| AWS Networking Workshop | |||
| Access Delegation | |||
| Amazon VPC Endpoint Workshop | |||
| Build a Vulnerability Management Program Using AWS for AWS | |||
| Data Discovery and Classification with Amazon Macie | |||
| Data Protection | |||
| DevSecOps - Integrating security into your pipeline | |||
| Disaster Recovery on AWS | |||
| Finding and addressing Network Misconfigurations on AWS | |||
| Firewall Manager Service - WAF Policy | |||
| Getting Hands on with Amazon GuardDuty | |||
| Hands on Network Firewall Workshop | |||
| Implementing DDoS Resiliency | |||
| Infrastructure Identity on AWS | |||
| Integrating security into your container pipeline | |||
| Integration, Prioritization, and Response with AWS Security Hub | |||
| Introduction to WAF | |||
| Permission boundaries: how to delegate permissions on AWS | |||
| Protecting workloads on AWS from the instance to the edge | |||
| Scaling threat detection and response on AWS | |||
| Serverless Identity | |||
Awesome Cloud Security / Learning / Labs | |||
| PagerDuty Training Lab | |||
Awesome Cloud Security / Learning / Labs / PagerDuty Training Lab | |||
| PagerDuty Training GitHub | 411 | over 1 year ago | |
| PagerDuty Training for Engineers | |||
| PagerDuty Training for Everyone: Part 1 | |||
| PagerDuty Training for Everyone: Part 2 | |||
Awesome Cloud Security / Learning / Podcasts | |||
| Azure DevOps Podcast | |||
| Cloud Security Podcast by Google | |||
| Security Now | |||
Awesome Cloud Security / Learning / Vulnerable By Design | |||
| CloudGoat by Rhino Security Labs | 2,973 | 11 days ago | |
| ServerlessGoat by OWASP | 319 | 4 months ago | |
| WrongSecrets by OWASP | 1,233 | 6 days ago | |
Awesome Cloud Security / Certifications / Cloud Vendors | |||
| AWS Certified Security Specialty | |||
| Azure Security Engineer Associate | |||
| Google Professional Cloud Security Engineer | |||
| Oracle Cloud Platform Identity and Security Management | |||
Awesome Cloud Security / Certifications / ISC | |||
| CCSP - Certified Cloud Security Professional | |||
Awesome Cloud Security / Certifications / CSA | |||
| CCSK - Certificate of Cloud Security Knowledge | |||
| CCAK - Certificate of Cloud Auditing Knowledge | |||
Awesome Cloud Security / Projects / Alerting | |||
| 411 by Etsy | 971 | over 1 year ago | |
| ElastAlert by Yelp | 7,997 | 4 months ago | |
| StreamAlert by Airbnb | 2,861 | about 1 year ago | |
Awesome Cloud Security / Projects / Automated Security Assessment | |||
| Prowler | 10,839 | 6 days ago | |
| CloudFox | 1,953 | about 1 month ago | |
| SkyArk | 873 | about 2 years ago | |
| Pacu | 4,391 | 7 days ago | |
| Bucket Finder | |||
| Boto3 | |||
| Principal Mapper | 1,431 | 4 months ago | |
| ScoutSuite | 6,730 | about 2 months ago | |
| s3_objects_check | 74 | over 2 years ago | |
| cloudsplaining | 1,998 | 9 days ago | |
| weirdAAL | 781 | over 1 year ago | |
| cloudmapper | 6,003 | 4 months ago | |
| NetSPI/AWS_Consoler | 220 | over 4 years ago | |
Awesome Cloud Security / Projects / Benchmarking | |||
| AWS Security Benchmark | 617 | almost 5 years ago | |
Awesome Cloud Security / Projects / Data Loss Prevention | |||
| Git Secrets by AWS Labs | 12,442 | 7 months ago | |
Awesome Cloud Security / Projects / Firewall Management / globaldatanet | |||
| AWS Firewall Factory | 235 | 7 days ago | |
Awesome Cloud Security / Projects / Identity and Access Management / AWS Labs | |||
| AWS IAM Generator | 240 | over 3 years ago | |
Awesome Cloud Security / Projects / Identity and Access Management / Duo Labs | |||
| Parliament | 1,046 | 4 months ago | |
| CloudTracker | 887 | almost 3 years ago | |
Awesome Cloud Security / Projects / Identity and Access Management / Netflix | |||
| Aardvark | 473 | 27 days ago | |
| ConsoleMe | 3,141 | 5 months ago | |
| PolicyUniverse | 428 | 5 months ago | |
| Repokid | 1,120 | over 1 year ago | |
Awesome Cloud Security / Projects / Identity and Access Management / Pinterest | |||
| Knox | 1,233 | 9 days ago | |
Awesome Cloud Security / Projects / Identity and Access Management / Salesforce | |||
| Policy Sentry | 2,014 | 9 days ago | |
| CloudSplaining | 1,998 | 9 days ago | |
| AWS-AllowLister | 224 | over 1 year ago | |
| Terraform for Policy Guru | 30 | about 1 year ago | |
Awesome Cloud Security / Projects / Identity and Access Management / welldone.cloud | |||
| aws-lint-iam-policies | 111 | 21 days ago | |
Awesome Cloud Security / Projects / Identity and Access Management / Misc | |||
| AWS Missing Tools by CloudAvail | 1,338 | over 5 years ago | |
| Awesome IAM List | 1,758 | 15 days ago | |
| Enumerate IAM by Andres Riancho | 1,096 | 10 months ago | |
| Kubernetes AWS IAM Authenticator by Kubernetes SIG | 2,212 | 6 days ago | |
Awesome Cloud Security / Projects / Incident Response / AWS | |||
| AWS Incident Response Playbooks by AWS Samples | 926 | 6 months ago | |
| AWS Security Hub Automated Response and Remediation | 398 | 6 days ago | |
Awesome Cloud Security / Projects / Incident Response / Netflix | |||
| Dispatch by Netflix | 5,112 | 6 days ago | |
Awesome Cloud Security / Projects / Incident Response / PagerDuty | |||
| PagerDuty Automated Remediation Docs | 7 | almost 2 years ago | |
| PagerDuty Business Response Docs | 8 | almost 3 years ago | |
| PagerDuty DevSecOps Docs | 13 | almost 3 years ago | |
| PagerDuty Full Case Ownership Docs | 5 | almost 3 years ago | |
| PagerDuty Full Service Ownership Docs | 22 | over 1 year ago | |
| PagerDuty Going OnCall Docs | 7 | over 2 years ago | |
| PagerDuty Incident Response Docs | 1,022 | about 1 year ago | |
| PagerDuty Operational Review Docs | 20 | almost 3 years ago | |
| PagerDuty PostMortem Docs | 65 | over 2 years ago | |
| PagerDuty Retrospectives Docs | 9 | about 2 years ago | |
| PagerDuty Stakeholder Communication Docs | 9 | almost 2 years ago | |
Awesome Cloud Security / Projects / Incident Response / Velocidex | |||
| Velociraptor | 2,975 | 7 days ago | |
Awesome Cloud Security / Projects / Spring | |||
| Spring Cloud Security | 27 | 8 days ago | |
Awesome Cloud Security / Projects / Threat modeling | |||
| ThreatModel for Amazon S3 | 151 | about 1 year ago | Library of all the attack scenarios on Amazon S3 and how to mitigate them, following a risk-based approach |
Awesome Cloud Security / Examples / Ex. Automated Security Assessment | |||
| AWS Config Rules Repository | 1,612 | 2 months ago | |
| AWS Inspector Agent Autodeploy | 28 | over 6 years ago | |
| AWS Inspector Auto Remediation | 58 | over 6 years ago | |
| AWS Inspector Lambda Finding Processor | 39 | over 6 years ago | |
Awesome Cloud Security / Examples / Ex. Identity and Access Management | |||
| Amazon Cognito Streams connector for Amazon Redshift | 9 | over 4 years ago | |
Awesome Cloud Security / Examples / Ex. Logging | |||
| AWS Centralized Logging | 253 | 9 months ago | |
| AWS Config Snapshots to ElasticSearch | 70 | over 4 years ago | |
| AWS CloudWatch Events Monitor Security Groups | 25 | almost 5 years ago | |
Awesome Cloud Security / Examples / Ex. Web Application Firewall | |||
| AWS WAF Sample | 512 | almost 5 years ago | |
| AWS WAF Security Automations | 857 | 23 days ago | |
Awesome Cloud Security / Misc / Other Awesome Lists | |||
| Awesome Cloud Cost Control | 41 | about 1 year ago | |
| Awesome Cloud Native Security | 309 | about 1 year ago | |
| Awesome Cloud Security | 581 | about 1 year ago | |
| Awesome IAM List | 1,758 | 15 days ago | |
| Awesome Incident Response List | 7,682 | 4 months ago | |
| Awesome Shodan Queries | 5,854 | 6 months ago | |
nccgroup/sadcloud
fit2cloud/riskscanner
vinum-security/kubernetes-security-checklist
ydcloudsecurity/cloud-security-guides
withsecurelabs/leonidas
projectdiscovery/cloudlist
bitnami/containers
rams3sh/aaia
iknowjason/ariacloud
alexivkin/kubepwn