Alternatives and similar repositories for cnappgoat

Users that are interested in cnappgoat are comparing it to the libraries listed below

• wiz-sec / open-cvdb
  An open project to list all publicly known cloud vulnerabilities and CSP security issues
  ☆373Updated 4 months ago
• jatrost / awesome-kubernetes-threat-detection
  A curated list of resources about detecting threats and defending Kubernetes systems.
  ☆404Updated 2 years ago
• latiotech / insecure-kubernetes-deployments
  A full insecure kubernetes application for testing security tools
  ☆90Updated 3 months ago
• openraven / magpie
  A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …
  ☆196Updated last year
• RhinoSecurityLabs / IAMActionHunter
  An AWS IAM policy statement parser and query tool.
  ☆197Updated this week
• orcasecurity / orca-toolbox
  ☆124Updated 8 months ago
• DataDog / grimoire
  Generate datasets of cloud audit logs for common attacks
  ☆232Updated 3 weeks ago
• Permiso-io-tools / CloudConsoleCartographer
  Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. Cl…
  ☆173Updated last year
• threatcl / threatcl
  Documenting your Threat Models with HCL
  ☆453Updated last month
• cado-security / cloudgrep
  cloudgrep is grep for cloud storage
  ☆326Updated 11 months ago
• someengineering / cloud-security-list
  A list of cloud security tools and vendors.
  ☆184Updated last year
• SecurityRunners / CloudCommotion
  Cloud Commotion intends to cause chaos to simulate security incidents
  ☆145Updated last year
• secengjeff / awskillswitch
  Lambda function that streamlines containment of an AWS account compromise
  ☆344Updated 2 years ago
• adanalvarez / TrailDiscover
  An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…
  ☆172Updated 2 weeks ago
• tenable / KaiMonkey
  KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.
  ☆105Updated 2 years ago
• DataDog / threatest
  Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
  ☆339Updated 3 weeks ago
• tenable / EscalateGPT
  An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.
  ☆117Updated 3 weeks ago
• Nextdoor / cspm_evaluation_matrix
  Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix
  ☆59Updated 2 years ago
• DataDog / workload-security-evaluator
  ## Auto-archived due to inactivity. ## Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Securit…
  ☆37Updated last year
• cider-security-research / top-10-cicd-security-risks
  ☆423Updated 3 years ago
• rung / threat-matrix-cicd
  Threat matrix for CI/CD Pipeline
  ☆760Updated last year
• wiz-sec-public / cloud-middleware-dataset
  ☆246Updated last year
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆78Updated 10 months ago
• CloudDefenseAI / falco_extended_rules
  Curating Falco rules with MITRE ATT&CK Matrix
  ☆86Updated last year
• OWASP / www-project-top-10-ci-cd-security-risks
  OWASP Foundation Web Respository
  ☆101Updated last month
• PaloAltoNetworks / cobra-tool
  Cloud Offensive Breach and Risk Assessment (COBRA) Tool
  ☆102Updated 8 months ago
• domain-protect / domain-protect
  OWASP Domain Protect - prevent subdomain takeover
  ☆398Updated last year
• fwdcloudsec / known_aws_accounts
  List of known AWS accounts
  ☆250Updated last month
• unknownhad / CloudIntel
  This repo contains IOC, malware and malware analysis associated with Public cloud
  ☆249Updated last year
• trustoncloud / threatmodel-for-aws-s3
  Threat model for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach
  ☆157Updated 2 years ago