#Cloudsecurity

Showing 32 of 32 repositories tagged #cloudsecurity, ranked by stars

prowler-cloud
prowler-cloud
prowler

Prowler is the world’s most widely used open-source cloud security platform that automates security and compliance across any cloud environment.

Score
100
★ 14.1k ⑂ 2.2k +2/day
Python
madhuakula
madhuakula
kubernetes-goat

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

Score
100
★ 5.7k ⑂ 1.0k +7/day
HTML
deepfence
deepfence
ThreatMapper

Open Source Cloud Native Application Protection Platform (CNAPP)

Score
100
★ 5.3k ⑂ 636 +1/day
TypeScript
tenable
tenable
terrascan

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

Score
50
★ 5.2k ⑂ 555
Go
salesforce
salesforce
policy_sentry

IAM Least Privilege Policy Generator

Score
95
★ 2.2k ⑂ 154
Python
teamssix
teamssix
awesome-cloud-security

awesome cloud security 收集一些国内外不错的云安全资源,该项目主要面向国内的安全人员

Score
82
★ 2.1k ⑂ 237 +3/day
beelzebub-labs
beelzebub-labs
beelzebub

A secure low code deception runtime framework, leveraging AI for System Virtualization.

Score
100
★ 2.1k ⑂ 201 +2/day
Go
ahmedtariq01
ahmedtariq01
Cloud-DevOps-Learning-Resources

This repo includes Books and imp notes related to GCP, Azure, AWS, Docker, K8s, and DevOps. More, exam and interview prep notes.

Score
67
★ 2.0k ⑂ 687 +7/day
teamssix
teamssix
twiki

T Wiki 云安全知识文库,可能是国内首个云安全知识文库?

Score
64
★ 1.0k ⑂ 143
Dockerfile
projectdiscovery
projectdiscovery
cloudlist

Cloudlist is a tool for listing Assets from multiple Cloud Providers.

Score
91
★ 1.0k ⑂ 128 +2/day
Go
bridgecrewio
bridgecrewio
yor

Extensible auto-tagger for your IaC files. The ultimate way to link entities in the cloud back to the codified resource which created it.

Score
0
★ 928 ⑂ 130 +1/day
Go
Zeus-Labs
Zeus-Labs
ZeusCloud

Open Source Cloud Security

Score
59
★ 731 ⑂ 53
TypeScript
wgpsec
wgpsec
lc

LC(List Cloud)是一个多云攻击面资产梳理工具

Score
50
★ 649 ⑂ 56 +1/day
Go
HXSecurity
HXSecurity
TerraformGoat

TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.

Score
55
★ 638 ⑂ 94
HCL
wgpsec
wgpsec
cloudsword

一款帮助云租户发现和测试云上风险、增强云上防护能力的综合性开源工具

Score
86
★ 612 ⑂ 53 +2/day
Go
Esonhugh
Esonhugh
Attack_Code

文章 Attack Code 的详细全文。安全和开发总是具有伴生属性,尤其是云的安全方向,本篇文章是希望能帮助到读者的云安全入门材料。Full text of the article Attack Code. Security and development always have concomitant attributes, and this is especially true with the security direction of the cloud. This article is an introduction to cloud security that I hope will help readers.

Score
41
★ 560 ⑂ 39 +1/day
Shell
TROUBLE-1
TROUBLE-1
Vajra

Vajra is a UI-based tool with multiple techniques for attacking and enumerating in the target's Azure and AWS environment. It features an intuitive web-based user interface built with the Python Flask module for a better user experience. The primary focus of this tool is to have different attacking techniques all at one place with web UI interfaces.

Score
0
★ 408 ⑂ 62 +1/day
CSS
primait
primait
nuvola
Score
33
★ 143 ⑂ 19
Go
zoph-io
zoph-io
aws-trustline

Trustline: Check external access on your AWS account

Score
68
★ 135 ⑂ 12
Python
riskprofiler
riskprofiler
CloudFrontier

Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.

Score
45
★ 134 ⑂ 23
Lua
devsecblueprint
devsecblueprint
devsecblueprint

Learn DevSecOps and Cloud Security Engineering fundamentals.

Score
77
★ 113 ⑂ 27 +1/day
TypeScript
CloudDefenseAI
CloudDefenseAI
falco_extended_rules

Curating Falco rules with MITRE ATT&CK Matrix

Score
27
★ 87 ⑂ 16
Python
securesloth
securesloth
noCAP

Lightweight security tool for auditing your organization's Conditional Access Policies (CAPs) in Microsoft Entra ID for potential misconfigurations.

Score
23
★ 80 ⑂ 7
Python
doyensec
doyensec
cloudsec-tidbits

Blogpost series showcasing interesting cloud - web app security bugs

Score
0
★ 75 ⑂ 5
HCL
goldfiglabs
goldfiglabs
introspector

A schema and set of tools for using SQL to query cloud infrastructure.

Score
14
★ 66 ⑂ 5
Python
ansorren
ansorren
GDPatrol

A Lambda-powered Security Orchestration framework for AWS GuardDuty

Score
18
★ 53 ⑂ 14
Python
OWASP
OWASP
www-project-eks-goat

OWASP EKS Goat is a deliberately vulnerable EKS cluster environment to explore AWS cloud-native security through hands-on attack and defense labs with walkthrough.

Score
73
★ 45 ⑂ 61
Shell
irgoncalves
irgoncalves
awesome-security-articles

This repository contains links to awesome security articles.

Score
36
★ 43 ⑂ 7
stafordtituss
stafordtituss
HazProne

HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enabling you to pentest Vulnerabilities within, and hence, gain a better understanding of what could go wrong and why!!

Score
9
★ 40 ⑂ 11
HCL
txuswashere
txuswashere
pentesting

CyberSec Resources: FRAMEWORKS & STANDARDS; Pentesting Audits & Hacking; PURPLE TEAMING, AD, API, web, clouds, CTF, OSINT, Pentest tools, Network Security, Privilege escalation, Exploiting, Reversing, Secure Code, Bug Bounty, ...

Score
5
★ 31 ⑂ 3
tarihub
tarihub
offlinepost

读过的安全文章离线归档 | begin in 2023.11.23

Score
0
★ 18 ⑂ 3
C
Tanq16
Tanq16
containerized-security-toolkit

Multi-arch Docker images to perform security operations via containerized workflows.

Score
32
★ 17 ⑂ 3
Dockerfile
Related Topics
#security#cybersecurity#aws#cloud#devsecops#cloud-security#devops#aws-security#security-tools#terraform#azure#cspm

© 2026 GitRepoTrend · GitHub repositories by topic · Updated weekly