doitintl / secure-gcp-referenceLinks
Best practice example for secure and compliant Google Cloud Platform infrastructure
☆104Updated 2 years ago
Alternatives and similar repositories for secure-gcp-reference
Users that are interested in secure-gcp-reference are comparing it to the libraries listed below
Sorting:
- Take automated actions against threats and vulnerabilities.☆213Updated last year
- Community Security Analytics provides a set of community-driven audit & threat queries for Google Cloud☆344Updated last year
- KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.☆103Updated last year
- Compares and analyzes GCP IAM roles.☆77Updated 5 months ago
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆286Updated 11 months ago
- A list of cloud security tools and vendors.☆175Updated 11 months ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated last year
- A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.☆196Updated last year
- ☆120Updated 3 months ago
- Security Remediation Guides☆737Updated 2 weeks ago
- Rapidly apply hundreds of security controls in Azure☆184Updated 3 months ago
- A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …☆191Updated 11 months ago
- Threat model for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach☆157Updated last year
- Postman collections for Prisma Cloud☆76Updated last year
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.☆31Updated 10 months ago
- ☆114Updated 2 weeks ago
- Cross cloud workload identity research and workshops☆41Updated last month
- GCP CIS 1.1.0 Benchmark InSpec Profile☆132Updated last year
- A deliberately vulnerable Kubernetes cluster☆128Updated last year
- Create custom auto-remediation solutions using serverless functions in the cloud.☆53Updated 2 years ago
- A docker container to simplify and secure the use of Infrastructure as Code (IaC)☆77Updated this week
- A curated list of resources about detecting threats and defending Kubernetes systems.☆390Updated last year
- Cloud Commotion intends to cause chaos to simulate security incidents☆145Updated last year
- Harness the security superpowers of your cloud asset inventory☆11Updated 11 months ago
- The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…☆40Updated 2 years ago
- Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).☆143Updated 3 months ago
- Prisma Cloud docs☆81Updated last year
- Python script for collecting and visualising Google Cloud Platform IAM permissions☆50Updated 8 years ago
- A collection of DoD and Federal Government Cloud Computing Resources☆48Updated 4 years ago
- Convert cloudtrail data to MITRE ATT&CK Sightings☆80Updated 3 years ago