22 Open source projects that are alternatives of or similar to CloudAndContainerCompromiseSimulator

awesome resources about cloud native security 🐿

CdkGoat is Bridgecrew's "Vulnerable by Design" AWS CDK repository. CdkGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.

k0otkit is a universal post-penetration technique which could be used in penetrations against Kubernetes clusters.

tfquery: Run SQL queries on your Terraform infrastructure. Query resources and analyze its configuration using a SQL-powered framework.

AWSXenos will list all the trust relationships in all the IAM roles and S3 buckets

sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.

A schema and set of tools for using SQL to query cloud infrastructure.

Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).

A curated list of awesome Kubernetes security resources

Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.

Webhook server that evaluates WebAssembly policies to validate Kubernetes requests

A Central Control Plane for AWS Permissions and Access

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

Free Security and Hacking eBooks

Security tool to quickly audit Public Box files and folders.

A Docker container for remote penetration testing.

🛡️ Awesome Cloud Security Resources ⚔️

Identity & Access Management simplified and secure.

Выпускная квалификационная работа (ВКР) магистра в LaTeX, оформленная в соответствии с нормоконтролем Севастопольского государственного университета в 2017 г.

Prevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.

Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark

A curated list of Falco related tools, frameworks, blogs, podcasts, and articles