hashishrajan / cloud-security-vulnerabilities
List of all the Publicly disclosed vulnerabilities of Public Cloud Provider like Amazon Web Services (AWS), Microsoft Azure, Google Cloud, Oracle Cloud, IBM Cloud etc
☆357Updated last year
Related projects ⓘ
Alternatives and complementary repositories for cloud-security-vulnerabilities
- Security Remediation Guides☆710Updated this week
- An open project to list all publicly known cloud vulnerabilities and CSP security issues☆309Updated this week
- Awesome curate list of cyber security penetration testing tools for Cloud Security mainly AWS/Azure/Google☆117Updated 3 years ago
- A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.☆581Updated last year
- ☆240Updated 4 months ago
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆267Updated 2 months ago
- Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.☆480Updated 9 months ago
- ☆400Updated last year
- GCPGoat : A Damn Vulnerable GCP Infrastructure☆359Updated 3 weeks ago
- This repository is in progress, it will keep updating as I come across to new learning materials. Feel free to contribute.☆223Updated 2 years ago
- Playing around with Stratus Red Team (Cloud Attack simulation tool) and SumoLogic☆282Updated last year
- Azure and AWS Attacks☆1,048Updated last year
- This repo has been replaced by https://www.cloudvulndb.org☆720Updated 2 years ago
- AzureGoat : A Damn Vulnerable Azure Infrastructure☆789Updated 3 weeks ago
- An AWS IAM policy statement parser and query tool.☆157Updated 9 months ago
- API Security Project aims to present unique attack & defense methods in API Security field☆279Updated 2 years ago
- Security interview questions with possible explanation for roles in AppSec, Pentesting, Cloud Security, DevSecOps, Network Security and s…☆305Updated last month
- Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)☆316Updated 3 weeks ago
- Proof of concept code for Datadog Security Labs referenced exploits.☆417Updated last year
- A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.☆344Updated 7 months ago
- ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach☆151Updated last year
- Awesome list for cloud security related projects☆77Updated 2 years ago
- Unauthenticated enumeration of AWS, Azure, and GCP Principals☆203Updated last week
- Create your own vulnerable by design AWS penetration testing playground☆331Updated 6 months ago
- A curated list of resources about detecting threats and defending Kubernetes systems.☆364Updated last year
- KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.☆96Updated 11 months ago
- A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure☆659Updated last year
- Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.☆1,436Updated 3 weeks ago
- Automated Attack Simulation in the Cloud, complete with detection use cases.☆499Updated last week
- Azure Security Resources and Notes☆1,486Updated 5 months ago