awesome resources about cloud native security 🐿

A graph-based tool for visualizing effective access and resource relationships in AWS environments.

Trap dns requests

This repo has been replaced by https://www.cloudvulndb.org

Security Remediation Guides

List of some cloud metadata URLs that return interesting info

A combined list of helpful awscli commands from Scott Piper's flaws.cloud exercise as well as from Beau Bullock's Breaching the Cloud Training

The Open-Source AWS Cyber Range

Cloud Native Runtime Security

An admission controller that integrates Container Image Signature Verification into a Kubernetes cluster

Visualize your aws security groups.

all paths lead to clouds

This is an offensive guide to securing AWS infrastructures. The hope is that by knowing how to take advantage of various types of AWS weaknesses you will be verse enough to provide the correct coun…

An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share the resources with the entire internet 😈

Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints

☁️ ⚡ Granular, Actionable Adversary Emulation for the Cloud

Identify privilege escalation paths within and across different clouds

python3 scripts to help with aws triage needs

An implementation of infrastructure-as-code scanning using dynamic tooling.

📙 Amazon Web Services — a practical guide

Graph-based security analysis for everyone

A collection of cloud security icons ☁️🔒

Automated determination of which AWS services run where

AWS CloudSaga - Simulate security events in AWS

Command line tool to search s3 buckets and match filenames or file contents against keywords or regex strings

Take automated actions against threats and vulnerabilities.

A repository of breaches of AWS customers

Playing around with Stratus Red Team (Cloud Attack simulation tool) and SumoLogic