cloudmatos / matos

Related projects: ⓘ

• DataDog / workload-security-evaluator
  Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.
  ☆29Updated 5 months ago
• hotnops / AWSRoleJuggler
  A toolset to juggle AWS roles for persistent access
  ☆47Updated last month
• chainguard-dev / github-audit-alerter
  Slack alert bot for matching Github Audit Events
  ☆10Updated 3 weeks ago
• tradichel / SecurityMetricsAutomation
  ☆37Updated 8 months ago
• tenchi-security / camp
  CloudSplaining on AWS Managed Policies
  ☆41Updated this week
• avishayil / cdk-goat
  Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure
  ☆42Updated 8 months ago
• elastic / csp-security-policies
  Cloud Security Posture security policies
  ☆29Updated last week
• lightspin-tech / eks-creation-engine
  The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…
  ☆40Updated last year
• ramimac / breach-list-database
  A meta-database collecting resources that compile lists of breaches
  ☆17Updated 5 months ago
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆56Updated last year
• Permiso-io-tools / LogLicker
  Tool for obfuscating and deobfuscating data.
  ☆60Updated 6 months ago
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 2 years ago
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆56Updated 6 months ago
• offensive-terraform / offensive-terraform.github.io
  Offensive Terraform Website
  ☆44Updated 3 years ago
• praetorian-inc / snowcat
  a tool to audit the istio service mesh
  ☆173Updated 2 years ago
• chen-keinan / kube-beacon
  Open Source runtime scanner for k8s cluster and perform security audit checks based on CIS Kubernetes Benchmark specification
  ☆64Updated last month
• turbot / steampipe-mod-kubernetes-compliance
  Run individual controls or full compliance benchmarks for NSA CISA Kubernetes Hardening Guidance across all of your Kubernetes clusters u…
  ☆32Updated 6 months ago
• bridgecrewio / kustomizegoat
  Vulnerable Kustomize Kubernetes templates for training and education
  ☆47Updated 2 years ago
• ekristen / libnuke
  Common Golang Packages for use by the Various Cloud Nuke Tools
  ☆22Updated last week
• primeharbor / breaches.cloud
  https://breaches.cloud
  ☆36Updated 2 months ago
• AirWalk-Digital / AWSXenos
  AWSXenos will list all the trust relationships in all the IAM roles, S3 buckets, and more
  ☆60Updated 3 months ago
• aws-samples / network-access-analyzer-multi-account-analysis
  Identify all permitted data paths originating from the Internet to Network Interfaces within AWS Accounts across the entire AWS Organizat…
  ☆35Updated last year
• clearvector / lambda-spy
  ☆31Updated last year
• crypsisgroup / ebs-direct-sec-tools
  Fun tools around the EBS Direct API
  ☆17Updated 3 years ago
• aws-samples / iam-access-key-report
  ☆21Updated last year
• goldfiglabs / sgCheckup
  sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.
  ☆81Updated 3 years ago
• RichardoC / kube-audit-rest
  Kubernetes audit logging, when you don't control the control plane
  ☆64Updated this week
• gyrospectre / squyre
  Security Alert Decoration
  ☆25Updated 4 months ago
• bridgecrewio / cdkgoat
  CdkGoat is Bridgecrew's "Vulnerable by Design" AWS CDK repository. CdkGoat is a learning and training project that demonstrates how commo…
  ☆43Updated last year
• aquia-inc / aws-guardduty-runbook-generator
  Generates runbooks for GuardDuty findings
  ☆34Updated 2 months ago