SummitRoute / csp_security_mistakes

Related projects ⓘ

Alternatives and complementary repositories for csp_security_mistakes

• aquasecurity / cloud-security-remediation-guides
  Security Remediation Guides
  ☆709Updated this week
• BishopFox / iam-vulnerable
  Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
  ☆480Updated 9 months ago
• wiz-sec-public / cloud-middleware-dataset
  ☆240Updated 4 months ago
• awslabs / aws-security-assessment-solution
  An AWS tool to help you create a point in time assessment of your AWS account using Prowler.
  ☆519Updated 2 weeks ago
• rung / threat-matrix-cicd
  Threat matrix for CI/CD Pipeline
  ☆739Updated 4 months ago
• hashishrajan / cloud-security-vulnerabilities
  List of all the Publicly disclosed vulnerabilities of Public Cloud Provider like Amazon Web Services (AWS), Microsoft Azure, Google Cloud…
  ☆357Updated last year
• jonrau1 / ElectricEye
  ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring su…
  ☆960Updated this week
• nccgroup / sadcloud
  A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure
  ☆658Updated last year
• SummitRoute / aws_exposable_resources
  Resource types that can be publicly exposed on AWS
  ☆317Updated 2 years ago
• wiz-sec / open-cvdb
  An open project to list all publicly known cloud vulnerabilities and CSP security issues
  ☆309Updated this week
• tenable / cnappgoat
  CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.
  ☆266Updated 2 months ago
• domain-protect / domain-protect
  OWASP Domain Protect - prevent subdomain takeover
  ☆397Updated last month
• DataDog / stratus-red-team
  Granular, Actionable Adversary Emulation for the Cloud
  ☆1,829Updated last week
• nccgroup / PMapper
  A tool for quickly evaluating IAM permissions in AWS.
  ☆1,433Updated 3 months ago
• WithSecureLabs / awspx
  A graph-based tool for visualizing effective access and resource relationships in AWS environments.
  ☆922Updated 2 years ago
• OpenCSPM / opencspm
  Open Cloud Security Posture Management Engine
  ☆334Updated 2 years ago
• ramimac / aws-customer-security-incidents
  A repository of breaches of AWS customers
  ☆706Updated this week
• awslabs / aws-automated-incident-response-and-forensics
  ☆376Updated last year
• awslabs / aws-cloudsaga
  AWS CloudSaga - Simulate security events in AWS
  ☆442Updated this week
• joshlarsen / aws-recon
  Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.
  ☆529Updated 7 months ago
• ovotech / gitoops
  all paths lead to clouds
  ☆632Updated last year
• aws-samples / aws-customer-playbook-framework
  This repository provides sample templates for security playbooks against various scenarios when using Amazon Web Services.
  ☆543Updated this week
• aws-samples / aws-incident-response-playbooks
  ☆926Updated 6 months ago
• cyberark / SkyArk
  SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS
  ☆874Updated 2 years ago
• RhinoSecurityLabs / GCP-IAM-Privilege-Escalation
  A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.
  ☆343Updated 7 months ago
• pumasecurity / serverless-prey
  Serverless Functions for establishing Reverse Shells to Lambda, Azure Functions, and Google Cloud Functions
  ☆235Updated last month
• cider-security-research / top-10-cicd-security-risks
  ☆400Updated last year
• Hacking-the-Cloud / hackingthe.cloud
  An encyclopedia for offensive and defensive security knowledge in cloud native technologies.
  ☆1,729Updated this week
• trustoncloud / threatmodel-for-aws-s3
  ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach
  ☆151Updated last year