cdkgoatCdkGoat is Bridgecrew's "Vulnerable by Design" AWS CDK repository. CdkGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
Stars: ✭ 27 (+35%)
k0otkitk0otkit is a universal post-penetration technique which could be used in penetrations against Kubernetes clusters.
Stars: ✭ 217 (+985%)
tfquerytfquery: Run SQL queries on your Terraform infrastructure. Query resources and analyze its configuration using a SQL-powered framework.
Stars: ✭ 297 (+1385%)
AWSXenosAWSXenos will list all the trust relationships in all the IAM roles and S3 buckets
Stars: ✭ 57 (+185%)
sgCheckupsgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.
Stars: ✭ 77 (+285%)
introspectorA schema and set of tools for using SQL to query cloud infrastructure.
Stars: ✭ 61 (+205%)
metabadgerPrevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
Stars: ✭ 123 (+515%)
CloudFrontierMonitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.
Stars: ✭ 102 (+410%)
policy-serverWebhook server that evaluates WebAssembly policies to validate Kubernetes requests
Stars: ✭ 111 (+455%)
ConsolemeA Central Control Plane for AWS Permissions and Access
Stars: ✭ 2,631 (+13055%)
TerrascanDetect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
Stars: ✭ 2,687 (+13335%)
PandorasBoxSecurity tool to quickly audit Public Box files and folders.
Stars: ✭ 56 (+180%)
AriaCloudA Docker container for remote penetration testing.
Stars: ✭ 105 (+425%)
iamzeroIdentity & Access Management simplified and secure.
Stars: ✭ 192 (+860%)
master-thesisВыпускная квалификационная работа (ВКР) магистра в LaTeX, оформленная в соответствии с нормоконтролем Севастопольского государственного университета в 2017 г.
Stars: ✭ 84 (+320%)
CheckovPrevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.
Stars: ✭ 3,572 (+17760%)
Kube BenchChecks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
Stars: ✭ 4,359 (+21695%)
awesome-falcoA curated list of Falco related tools, frameworks, blogs, podcasts, and articles
Stars: ✭ 166 (+730%)