Alternatives and similar repositories for tools

Users that are interested in tools are comparing it to the libraries listed below

• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆71Updated 2 years ago
• zmallen / cloudtrail2sightings
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆80Updated 2 years ago
• krol3 / kubernetes-security-checklist
  Awesome resources about Security in Kubernetes
  ☆43Updated 2 years ago
• Cybr-Inc / CloudSec
  Public repository of all things cloud security.
  ☆42Updated 9 months ago
• tenchi-security / camp
  CloudSplaining on AWS Managed Policies
  ☆43Updated last week
• Hacking-the-Cloud / htc-ctfs
  Holds the public Hacking the Cloud CTFs.
  ☆56Updated last year
• orcasecurity-research / kte
  Test & Compare different Kubernetes security offerings on EKS, GKE and AKS
  ☆40Updated 9 months ago
• hashicorp-forge / semgrep-rules
  HashiCorp-relevant rules for the Semgrep code analysis tool
  ☆41Updated last year
• OWASP / www-project-kubernetes-security-testing-guide
  OWASP Kubernetes Security Testing Guide
  ☆38Updated 9 months ago
• avishayil / cdk-goat
  Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure
  ☆47Updated last year
• DataDog / workload-security-evaluator
  Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.
  ☆31Updated 8 months ago
• ReversecLabs / cloud-security-vm
  Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments
  ☆141Updated 5 months ago
• saw-your-packet / CloudShovel
  A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…
  ☆108Updated 7 months ago
• omaidf / PrismX
  Cloud Security Dashboard for AWS - based on ScoutSuite
  ☆1Updated last year
• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆56Updated 2 weeks ago
• OWASP / www-project-top-10-ci-cd-security-risks
  OWASP Foundation Web Respository
  ☆95Updated 5 months ago
• Whitespots-OU / security-requirements-generator
  A small tool to help developers understand a huge set of security requirements from appsec teams
  ☆45Updated 2 years ago
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆64Updated last month
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆61Updated 2 years ago
• Threat-Modeling-Manifesto / threat-modeling-manifesto
  Threat Modeling Manifesto
  ☆28Updated 11 months ago
• tradichel / SecurityMetricsAutomation
  ☆41Updated last year
• primeharbor / breaches.cloud
  https://breaches.cloud
  ☆40Updated 8 months ago
• abdullahgarcia / kubernetes-for-soc
  kubernetes-for-soc aims to fast-track the learning curve for SOC analysts by enabling them to swiftly grasp the essential concepts and kn…
  ☆54Updated last year
• aws-samples / network-access-analyzer-multi-account-analysis
  Identify all permitted data paths originating from the Internet to Network Interfaces within AWS Accounts across the entire AWS Organizat…
  ☆39Updated last year
• SeisoLLC / easy_infra
  A docker container to simplify and secure the use of Infrastructure as Code (IaC)
  ☆74Updated this week
• domain-protect / domain-protect-gcp
  Protect against subdomain takeover
  ☆92Updated last year
• carta / krang
  Knowledge Report Alert & Normalization Generator
  ☆27Updated last year
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆77Updated 3 months ago
• wiz-sec-public / peach-framework
  PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…
  ☆71Updated 2 years ago
• OWASP / www-project-devsecops-verification-standard
  OWASP Foundation Web Respository
  ☆45Updated 3 weeks ago