hashishrajan / cloud-security-vulnerabilities
List of all the Publicly disclosed vulnerabilities of Public Cloud Provider like Amazon Web Services (AWS), Microsoft Azure, Google Cloud, Oracle Cloud, IBM Cloud etc
☆357Updated last year
Related projects: ⓘ
- An open project to list all publicly known cloud vulnerabilities and CSP security issues☆303Updated last month
- Awesome curate list of cyber security penetration testing tools for Cloud Security mainly AWS/Azure/Google☆115Updated 3 years ago
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆264Updated 2 weeks ago
- Security Remediation Guides☆698Updated last month
- Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.☆465Updated 7 months ago
- A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.☆574Updated 10 months ago
- An AWS IAM policy statement parser and query tool.☆153Updated 7 months ago
- A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.☆335Updated 5 months ago
- GCPGoat : A Damn Vulnerable GCP Infrastructure☆350Updated 7 months ago
- Security interview questions with possible explanation for roles in AppSec, Pentesting, Cloud Security, DevSecOps, Network Security and s…☆286Updated this week
- Awesome list for cloud security related projects☆70Updated last year
- Playing around with Stratus Red Team (Cloud Attack simulation tool) and SumoLogic☆276Updated last year
- ☆394Updated last year
- This repo has been replaced by https://www.cloudvulndb.org☆718Updated 2 years ago
- Create your own vulnerable by design AWS penetration testing playground☆321Updated 3 months ago
- AzureGoat : A Damn Vulnerable Azure Infrastructure☆755Updated 6 months ago
- A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure☆644Updated 11 months ago
- This Repo serves as a collection of shared security and penetration testing resources for the cloud.☆215Updated last month
- ☆237Updated 2 months ago
- Azure and AWS Attacks☆1,044Updated last year
- ☆369Updated 11 months ago
- My cheatsheet notes to pentest AWS infrastructure☆652Updated last year
- Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)☆309Updated 2 months ago
- KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.☆93Updated 9 months ago
- This repo contains IOC, malware and malware analysis associated with Public cloud☆241Updated this week
- This repository is in progress, it will keep updating as I come across to new learning materials. Feel free to contribute.☆223Updated 2 years ago
- ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach☆148Updated 11 months ago
- API Security Project aims to present unique attack & defense methods in API Security field☆280Updated 2 years ago
- Collection of Threat Models☆370Updated 2 years ago
- This is a companion to the Security Engineer Questions☆196Updated 9 months ago