CloudDefenseAI / falco_extended_rules
Curating Falco rules with MITRE ATT&CK Matrix
☆74Updated 6 months ago
Related projects: ⓘ
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆28Updated 3 weeks ago
- ☆163Updated 2 months ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆56Updated 6 months ago
- A full insecure kubernetes application for testing security tools☆41Updated last week
- Adaptive AWS Zero Trust Policy made easy: Auto-generate least-privilege policies based on user activity in real time! Accelerate the adop…☆72Updated 4 months ago
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆78Updated 7 months ago
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.☆29Updated 5 months ago
- An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.☆93Updated 2 months ago
- Protect against subdomain takeover☆92Updated 3 months ago
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆82Updated 8 months ago
- Generate datasets of cloud audit logs for common attacks☆158Updated last month
- 🧰 Multi Tool Kubernetes Pentest Image☆207Updated 3 weeks ago
- WAF bypass PoC☆43Updated 11 months ago
- HashiCorp-relevant rules for the Semgrep code analysis tool☆37Updated 11 months ago
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…☆65Updated last year
- Simple Workspace Attack Tool (SWAT) is a tool for simulating malicious behavior against Google Workspace in reference to the MITRE ATT&CK…☆159Updated last month
- AIGoat: A deliberately Vulnerable AI Infrastructure. Learn AI security through solving our challenges.☆60Updated last week
- MetaHub is an automated contextual security findings enrichment and impact evaluation tool for vulnerability management.☆152Updated this week
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆56Updated last year
- Independently deploy customized honeyservices in AWS to trigger alerts on unauthorized access. It utilizes a dedicated CloudTrail for pre…☆42Updated 4 months ago
- Blogpost series showcasing interesting cloud - web app security bugs☆44Updated last year
- ☆37Updated 3 weeks ago
- ☆42Updated 3 years ago
- An AWS IAM policy statement parser and query tool.☆153Updated 7 months ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆55Updated last year
- Clean accounts over permissions in GCP infra at scale☆70Updated last year
- OWASP Kubernetes security and compliance tool [WIP]☆102Updated last year
- ☆134Updated last week
- ☆90Updated 4 months ago
- ☆19Updated 5 months ago