820 Open source projects that are alternatives of or similar to Inspec Gcp Cis Benchmark

Multi-Cloud Security Auditing Tool

GKE CIS 1.1.0 Benchmark InSpec Profile

Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

Deploy your apps on any Cloud provider in just a few seconds

Configuration guidance for implementing the Windows 10 and Windows Server 2016 DoD Secure Host Baseline settings. #nsacyber

Machine Learning Platform and Recommendation Engine built on Kubernetes

List of resources - courses, sample code, articles and screencasts for learning AWS, Azure, GCP and Alibaba Cloud

Open Cloud Security Posture Management Engine

Microservices demo application on cloud-hosted Kubernetes cluster

An open source platform for managing and analyzing biomedical big data

Hayat is a script for report and analyze Google Cloud Platform resources.

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.

CLI tool to generate terraform files from existing infrastructure (reverse Terraform). Infrastructure to Code

Terratag is a CLI tool that enables users of Terraform to automatically create and maintain tags across their entire set of AWS, Azure, and GCP resources

Pulumi - Developer-First Infrastructure as Code. Your Cloud, Your Language, Your Way 🚀

GCP Essentials for Bioinformatics Researchers

An operator to fetch secrets from cloud services and inject them in Kubernetes

cloudquery transforms your cloud infrastructure into SQL or Graph database for easy monitoring, governance and security.

INTERCEPT / Policy as Code Static Analysis Auditing / SAST

Cloudblock automates deployment of secure ad-blocking for all of your devices - even when mobile. Step-by-step text and video guides included! Compatible clouds include AWS, Azure, Google Cloud, and Oracle Cloud. Cloudblock deploys Wireguard VPN, Pi-Hole DNS Ad-blocking, and DNS over HTTPS in a cloud provider - or locally - using Terraform and Ansible.

Create clusters of VMs on the cloud and configure them with Ansible.

Knowledge seeks no man

Android in docker solution with noVNC supported and video recording

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

The Go Cloud Development Kit (Go CDK): A library and tools for open cloud development in Go.

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.

Cloud cost estimates for Terraform in pull requests💰📉 Love your cloud bill!

Continuous Auditing & Configuration

Reads from existing Cloud Providers (reverse Terraform) and generates your infrastructure as code on Terraform configuration

Source for Google Click to Deploy solutions listed on Google Cloud Marketplace.

Any Airflow project day 1, you can spin up a local desktop Kubernetes Airflow environment AND one in Google Cloud Composer with tested data pipelines(DAGs) 🖥 >> [ 🚀, 🚢 ]

Google's Infrastructure for Everyone Else

Functional F# library to access Firestore database hosted on Google Cloud Platform (GCP) or Firebase.

Google Cloud Platform Certification resources.

An active monitoring software to detect failures before your customers do.

Cloud Security Posture Management (CSPM)

Prevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.

A crowdsourced directory tracking the compliance and security practices of cloud services and their subprocessors

Kotlin/Java API framework for Google Appengine

Real Time Big Data / IoT Machine Learning (Model Training and Inference) with HiveMQ (MQTT), TensorFlow IO and Apache Kafka - no additional data store like S3, HDFS or Spark required

Prowler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.

The TensorFlow Cloud repository provides APIs that will allow to easily go from debugging and training your Keras and TensorFlow code in a local environment to distributed training in the cloud.

Google Cloud Storage emulator & testing library.

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

Azure PCI PaaS Reference Architecture

Self service web portal for different Cloud platforms like Azure, AWS and VMWare vSphere.

Infrastructure, containers, and serverless apps to AWS, Azure, GCP, and Kubernetes... all deployed with Pulumi

Plugin for sudo that requires another human to approve and monitor privileged sudo sessions

🔎 ScanCode detects licenses, copyrights, package manifests & dependencies and more by scanning code ... to discover and inventory open source and third-party packages used in your code.

The source for REST API specifications for Microsoft Azure.

prancer platform is an IaC Security engine + Continuous Compliance for your cloud and Kuberneted environment

Repository of examples for awless templates (see https://github.com/wallix/awless)

CloudSimSDN is an SDN extension of CloudSim project to simulate SDN and SFC features in the context of a cloud data center.

A simple Java library to interface with Firebase Cloud Messaging (FCM) API. Pushraven allows you to push notifications to clients in very few lines of code.

A command-line and ruby API of utilities, converters and tools for creating, converting and processing security baseline formats, results and data

Miniflix - A smaller version of Netflix powered by Cloudinary

Crosswalk Playbooks and Code for Teams to Manage Kubernetes in Production

Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.