bridgecrewio / kustomizegoat
Vulnerable Kustomize Kubernetes templates for training and education
☆47Updated 2 years ago
Related projects: ⓘ
- CloudSplaining on AWS Managed Policies☆41Updated this week
- CdkGoat is Bridgecrew's "Vulnerable by Design" AWS CDK repository. CdkGoat is a learning and training project that demonstrates how commo…☆43Updated last year
- Compares and analyzes GCP IAM roles.☆76Updated 3 months ago
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.☆29Updated 5 months ago
- ☆27Updated 2 months ago
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆56Updated last year
- ☆90Updated 4 months ago
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Updated 2 years ago
- Visualize your Terraform files☆34Updated 4 years ago
- ☆18Updated 2 years ago
- ☆37Updated 8 months ago
- Lightspin AWS IAM Vulnerability Scanner☆96Updated 3 years ago
- Offensive Terraform Website☆44Updated 3 years ago
- GCP CSPM using Google Sheets☆33Updated 3 months ago
- Kubernetes Pwnage for all☆54Updated 3 years ago
- ☆48Updated 4 years ago
- HashiCorp-relevant rules for the Semgrep code analysis tool☆37Updated 11 months ago
- PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…☆58Updated 2 years ago
- Generates runbooks for GuardDuty findings☆34Updated 2 months ago
- Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure☆42Updated 8 months ago
- Updated incident response generator for training classes☆41Updated 3 years ago
- ☆19Updated 5 months ago
- Gordon is status check Github app to enforce and validate about.yaml file specifications in a repository during pull requests to drive co…☆19Updated 2 weeks ago
- ☆35Updated 5 months ago
- Manage GuardDuty At Enterprise Scale☆22Updated 4 years ago
- AWS Incident Response Kit (AIRK) - AWS Incident Response☆21Updated 4 years ago
- Clean accounts over permissions in GCP infra at scale☆70Updated last year
- AWSXenos will list all the trust relationships in all the IAM roles, S3 buckets, and more☆60Updated 3 months ago
- ☆28Updated 4 years ago
- Security Scanner based on CIS benchmark 1.1 inspired by Scout2☆52Updated last year