cloud-security

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

Free Security and Hacking eBooks

A Central Control Plane for AWS Permissions and Access

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.

Cloud Exploitation Framework 云环境利用框架，方便安全人员在获得 AK 的后续工作

🛡️ Awesome Cloud Security Resources ⚔️

Automating situational awareness for cloud penetration tests.

☁️ ⚡ Granular, Actionable Adversary Emulation for the Cloud

PacBot (Policy as Code Bot)

Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.

Fleet is the lightweight, programmable telemetry platform for servers and workstations. Get comprehensive, customizable data from all your devices and operating systems — without the downtime risk.

An encyclopedia for offensive and defensive security knowledge in cloud native technologies.

veinmind-tools 是由长亭科技自研，基于 veinmind-sdk 打造的容器安全工具集

TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.

Open source cloud-native security lake platform (SIEM alternative) for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS 🦀

awesome cloud security 收集一些国内外不错的云安全资源，该项目主要面向国内的安全人员

SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS

Continuously monitor your AWS attack surface and evaluate services for configurations that can lead to degradation of confidentiality, integrity or availability. All results can be exported to Security Hub, JSON, CSV, Databases, and more for further aggregation and analysis.