Repository navigation

#

gcp-security

tenable/terrascan
tenable / terrascan 

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

安全Infrastructure as codedevsecopsDevOpsTerraformAmazon Web Servicescloudsecuritycloud-securityterrascaninfrastructurearchitectureKubernetessastazure-securityaws-securitygcp-securityscans
Go
4898
4 个月前
jassics / security-study-plan 

Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...

aws-securitystudy-guidestudy-planappsecappsec-tutorialsazure-securitydevsecops-universitygcp-securitypentestingapplication-securityCybersecuritysecurity-testingapi-security
4582
3 个月前
4ndersonLin / awesome-cloud-security 

🛡️ Awesome Cloud Security Resources ⚔️

安全cloud-computingcloud-securityCybersecurityAmazon Web Servicesaws-securityAzureazure-securityGoogle 云gcp-security
2160
5 个月前
DataDog / stratus-red-team 

☁ ⚡ Granular, Actionable Adversary Emulation for the Cloud

Amazon Web Servicesadversary-emulationpurple-teammitre-attackcloud-securitycloud-native-securitydetection-engineeringthreat-detection安全aws-securityazure-securitykubernetes-securitygcp-security
Go
1988
2 天前
bridgecrewio / terragoat 

TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.

Terraformaws-securitycloud-securitygoatazure-securitygcp-securitydevsecops
HCL
1194
23 天前
jonrau1 / ElectricEye 

ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks

安全cloud-securitysecurity-monitoringaws-securitysecurity-hubsecurity-engineeringdevsecopscomplianceattack-surface-managementAmazon Web Servicesgcp-securitymulticloudasset-management
Python
988
2 个月前
HXSecurity / TerraformGoat 

TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.

安全TerraformGoogle 云cloudsecurityaws-securityazure-securitygcp-securitykubernetes-securitycloud-security
HCL
581
2 年前
HXSecurity / TerraformGoat 

TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.

安全TerraformGoogle 云cloudsecurityaws-securityazure-securitygcp-securitykubernetes-securitycloud-security
HCL
544
2 年前
cado-security / cloudgrep 

cloudgrep is grep for cloud storage

Amazon Web Servicesaws-s3grepsearchcloudcloud-securityaws-securityAzureazure-securityGoogle 云gcp-security
Python
326
2 个月前
riskprofiler / CloudFrontier 

Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Cloud.

Amazon Web ServicesGoogle 云AzuredigitaloceanCybersecuritycloudsecuritycyber-securitycloud-securityServerlessdynamodblambda-functionsAPIserverless-frameworkaws-securityazure-securitygcp-securityOracle 数据库
Lua
124
1 年前
DenizParlak / hayat 

Hayat is a script for report and analyze Google Cloud Platform resources.

hardeningcloudgcp-cloud-functionsGoogle 云gcp-security
Shell
80
5 年前
anrbn / GCP-Attack-Defense 

A Project dedicated to documenting various attack and detection vectors that can be encountered within Google Cloud Platform (GCP).

cloud-securityGoogle 云gcp-securityprivilege-escalation
Python
60
1 年前
offensive-terraform / offensive-terraform.github.io 

Offensive Terraform Website

Amazon Web ServicesGoogle 云Azurecloud-securityDockeroffensive-securityaws-securitygcp-securityazure-securityTerraform
JavaScript
44
5 年前
offensive-terraform / offensive-terraform.github.io 

Offensive Terraform Website

Amazon Web ServicesGoogle 云Azurecloud-securityDockeroffensive-securityaws-securitygcp-securityazure-securityTerraform
JavaScript
44
5 年前
lightspin-tech / lightspin-2022-top-7-attack-paths 

Based on Lightspin proprietary data, research, and our tracking of cloud security trends in the market, our research team has compiled a list of the 2022 Top 7 Cloud Attack Paths across AWS, Azure, GCP, and Kubernetes as seen on the Lightspin Cloud Native Application Protection Platform.

attack-pathsattack-surfaceaws-securityazure-securitycloud-securitycloudsecuritygcp-securitymitre-attack
40
3 年前
eshlomo1 / CloudSec 

Welcome to the Cloud Security Toolkit repository, your all-in-one destination for cutting-edge cloud security resources! Whether you're diving into offensive strategies, mastering threat hunting, or bolstering your blue-team defenses, this repo has you covered.

aws-securityAzureazure-securitycloud-securitycloudsecuritydfirgcp-securityincident-responsekqlMicrosoftsiemsocthreat-huntingthreat-intelligence
PowerShell
22
7 天前
paulveillard / cybersecurity-cryptography 

A collection of awesome software, libraries, documents, books, resources and cool stuff about cryptography in Cybersecurity.

加密货币Cryptographycrypto比特币cryptocurrencies安全cyber-security以太坊nftsnft-marketplacedocker-securitykubernetes-deploymentappsecaws-securityazure-securitygcp-security
Python
20
1 年前
GoogleCloudPlatform / scoutsuite-gcp-scan 

Terraform to run Scoutsuite security scan of projects within a Google Cloud Org. Report will be published to a GCS bucket.

cloudsecurityGoogle 云gcp-securityTerraform
HCL
16
1 年前
bridgecrewio / HowCrew 

Super-powered know how tools for AWS and GCP cloud security

Amazon Web Servicesaws-securitygcp-security
Python
14
2 年前
Funny-Systems-OSS / cloudsql-proxy-hardening 

Cloud SQL Proxy works with encrypted credential file.

Google 云安全gcp-security
Go
10
4 年前