jassics / awesome-aws-security
Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
β1,237Updated 7 months ago
Related projects: β
- π‘οΈ Awesome Cloud Security Resources βοΈβ2,031Updated 3 months ago
- A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.β574Updated 10 months ago
- An encyclopedia for offensive and defensive security knowledge in cloud native technologies.β1,640Updated 2 weeks ago
- AWSGoat : A Damn Vulnerable AWS Infrastructureβ1,710Updated this week
- Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.β1,382Updated 3 months ago
- Azure and AWS Attacksβ1,044Updated last year
- Curating the best DevSecOps resources and tooling.β1,373Updated last month
- Security Remediation Guidesβ698Updated last month
- βΎοΈ Collection and Roadmap for everyone who wants DevSecOps. Hope your DevOps are more safe πβ1,744Updated 2 months ago
- The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.β827Updated 2 months ago
- β677Updated 2 years ago
- This is a step-by-step guide to implementing a DevSecOps program for any size organizationβ1,880Updated 6 months ago
- Checklist for container security - devsecops practicesβ1,504Updated 11 months ago
- A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for β¦β1,359Updated last month
- My cheatsheet notes to pentest AWS infrastructureβ652Updated last year
- CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment toolβ2,893Updated last week
- A curated list of awesome CI CD security resourcesβ520Updated 2 months ago
- A tool for standing up (and tearing down!) purposefully insecure cloud infrastructureβ644Updated 11 months ago
- Automating situational awareness for cloud penetration tests.β1,896Updated last month
- List of all the Publicly disclosed vulnerabilities of Public Cloud Provider like Amazon Web Services (AWS), Microsoft Azure, Google Cloudβ¦β357Updated last year
- Some of the questions which i was asked when i was giving interviews for Application/Product Security roles. I am sure this is not an exhβ¦β647Updated 4 years ago
- This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage clouβ¦β2,509Updated 11 months ago
- Security interview questions with possible explanation for roles in AppSec, Pentesting, Cloud Security, DevSecOps, Network Security and sβ¦β286Updated this week
- TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates howβ¦β1,135Updated this week
- Curated list of resources for security Governance, Risk Management, Compliance and Audit professionals and enthusiasts (if they exist).β587Updated last month
- AzureGoat : A Damn Vulnerable Azure Infrastructureβ755Updated 6 months ago
- ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring suβ¦β931Updated last week
- A collection of sources of documentation, as well as field best practices, to build/run a SOCβ1,169Updated this week
- A repository of breaches of AWS customersβ686Updated this week
- β911Updated 4 months ago