#Cloud-security
Showing 60 of 82 repositories tagged #cloud-security, ranked by stars
817 structured cybersecurity skills for AI agents · Mapped to 6 frameworks: MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND, NIST AI RMF & MITRE F3 (Fight Fraud) · agentskills.io standard · Works with Claude Code, GitHub Copilot, Codex CLI, Cursor, Gemini CLI & 20+ platforms · 29 security domains · Apache 2.0
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
Free Security and Hacking eBooks
An encyclopedia for offensive and defensive security knowledge in cloud native technologies.
Automating situational awareness for cloud penetration tests.
🛡️ Awesome Cloud Security Resources ⚔️
:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
awesome cloud security 收集一些国内外不错的云安全资源,该项目主要面向国内的安全人员
Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
veinmind-tools 是由长亭科技自研,基于 veinmind-sdk 打造的容器安全工具集
Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
PacBot (Policy as Code Bot)
TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.
A Huge Learning Resources with Labs For Offensive Security Players
Awesome cloud enumerator
Constellation is a Kubernetes distribution for confidential computing, securing entire clusters on untrusted infrastructure. Constellation is in maintenance mode. New development continues in Contrast, which provides workload-level confidential computing using Confidential Containers. 👉 https://github.com/edgelesssys/contrast
Query, provision and operate Cloud, SaaS, API and Model Context Protocol (MCP) resources through a unified SQL-based framework for humans and AI agents.
156 offensive security skills for recon and pentest. Field-validated techniques from 600+ targets across 45+ sectors. Updated with browser fingerprint evasion, anti-bot bypass, hardcoded credential hunting, SCADA/ICS enumeration.
opensecurity: open-source security and compliance. See and secure your cloud, containers, code, networks, deployments, devices. Define your rules, get precise checks, fix gaps fast. Streamlined audits. No fluff.
A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.
TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.
文章 Attack Code 的详细全文。安全和开发总是具有伴生属性,尤其是云的安全方向,本篇文章是希望能帮助到读者的云安全入门材料。Full text of the article Attack Code. Security and development always have concomitant attributes, and this is especially true with the security direction of the cloud. This article is an introduction to cloud security that I hope will help readers.
Security interview questions with possible explanation for roles in AppSec, Pentesting, Cloud Security, DevSecOps, Network Security and so on
MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).
Skills and career roadmap for various security roles like application security, cloud security, DevSecOps, security engineer, security researchers, pentesting, api security, network security, mobile security and so on with helpful resources, guidelines
AWS云平台 AccessKey 泄漏利用工具
IAM Policy Autopilot is an open source static code analysis tool that helps you quickly create baseline AWS IAM policies that you can refine as your application evolves. This tool is available as a command-line utility and MCP server for use within AI coding assistants for quickly building IAM policies.
Find cloud assets that no one wants exposed 🔎 ☁️
旨在以攻促防,针对Docker TCP socket的开源利用工具
tfquery: Run SQL queries on your Terraform infrastructure. Query resources and analyze its configuration using a SQL-powered framework.
awesome resources about cloud native security 🐿
Scan 30+ AWS services. Find cost waste. Detect security gaps. Map your attack surface. One command.
CloudRec is an open source multi-cloud security posture management (CSPM) platform designed to help organizations improve the security of their cloud environments.
Build AI-powered security tools. 50+ hands-on labs covering ML, LLMs, RAG, threat detection, DFIR, and red teaming. Includes Colab notebooks, Docker environment, and CTF challenges.
Daily-updated IP ranges for 35+ providers (AWS, Azure, GCP, Cloudflare, GitHub, Fastly, Linode + GoogleBot, BingBot, GPTBot) in 12+ formats: TXT, JSON, CSV, SQL, Nginx, Apache, iptables, nftables, UFW, HAProxy, Caddy + merged CIDRs
A Docker container for remote penetration testing.
Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.
☁️ Curated Cloud OSINT resources — dorks, tools, and techniques for AWS, Azure, GCP, Oracle Cloud, and other major providers reconnaissance
The cloud hygiene platform - including AI and GPU infrastructure
Схема карьерных треков в кибербезопасности
A fast, comprehensive tool for mapping and inventorying AWS resources across 150+ services and all regions.
A Model Context Protocol server that connects AI assistants like Claude to AWS security services, allowing them to autonomously query, inspect, and analyze AWS infrastructure for security issues and misconfigurations.
Spotter is a comprehensive Kubernetes security scanner that uses CEL-based rules to identify security vulnerabilities, misconfigurations, and compliance violations across your Kubernetes clusters, manifests, and CI/CD pipelines.
Adaptive AWS Zero Trust Policy made easy: Auto-generate least-privilege policies based on user activity in real time! Accelerate the adoption of smart access control
Curated cyber security resources for blue team, red team, DFIR, OSINT, AppSec, cloud security, security logging, and training.
A comprehensive collection of free cybersecurity eBooks categorized by topics and updated regularly
Ian Hanley's deceptively simple KQL queries.
A schema and set of tools for using SQL to query cloud infrastructure.
Fast, opinionated AWS security scanner. Curated checks. Zero noise. Copy-paste fixes.
AWSXenos will list all the trust relationships in all the IAM roles, S3 buckets, and more
IaC threat modeler with STRIDE, MITRE ATT&CK, and PASTA frameworks. REST API, GraphQL, and Docker support for Terraform, CloudFormation, and Kubernetes.
An implementation of infrastructure-as-code scanning using dynamic tooling.
Security tool to quickly audit Public Box files and folders.
A modern, extensible framework for defining and enforcing security policies across your digital infrastructure.
PWNCLOUDOS