Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
-
Updated
Nov 12, 2024 - Go
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...
🛡️ Awesome Cloud Security Resources ⚔️
☁️ ⚡ Granular, Actionable Adversary Emulation for the Cloud
TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks
TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.
cloudgrep is grep for cloud storage
Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.
Hayat is a script for report and analyze Google Cloud Platform resources.
A Project dedicated to documenting various attack and detection vectors that can be encountered within Google Cloud Platform (GCP).
Offensive Terraform Website
Based on Lightspin proprietary data, research, and our tracking of cloud security trends in the market, our research team has compiled a list of the 2022 Top 7 Cloud Attack Paths across AWS, Azure, GCP, and Kubernetes as seen on the Lightspin Cloud Native Application Protection Platform.
A collection of awesome software, libraries, documents, books, resources and cool stuff about cryptography in Cybersecurity.
Welcome to the Cloud Security Toolkit repository, your all-in-one destination for cutting-edge cloud security resources! Whether you're diving into offensive strategies, mastering threat hunting, or bolstering your blue-team defenses, this repo has you covered.
Terraform to run Scoutsuite security scan of projects within a Google Cloud Org. Report will be published to a GCS bucket.
Super-powered know how tools for AWS and GCP cloud security
Cloud SQL Proxy works with encrypted credential file.
Send SCC Notifications to Google Chat
Add a description, image, and links to the gcp-security topic page so that developers can more easily learn about it.
To associate your repository with the gcp-security topic, visit your repo's landing page and select "manage topics."