nxtof's Stars
aws-samples/aws-incident-response-playbooks
berestovskyy/applied-cpp
Applied C++. For more details please see: https://medium.com/applied/programming
rdkls/tf-parliament
common-fate/iamzero
Identity & Access Management simplified and secure.
FiloSottile/mkcert
A simple zero-config tool to make locally trusted development certificates with any names you'd like.
owenrumney/squealer
Telling tales on you for leaking secrets!
timbray/topfew
Finds the field values (or combinations of values) which appear most often in a stream of records.
WeAreCloudar/s3-account-search
S3 Account Search
doitintl/kube-secrets-init
Kubernetes mutating webhook for `secrets-init` injection
vchinnipilli/kubestriker
A Blazing fast Security Auditing tool for Kubernetes
connelldave/botocove
A simple decorator to run Python functions across multiple AWS accounts, OUs and/or regions, with or without an AWS Organization.
snyk/driftctl
Detect, track and alert on infrastructure drift
cncf/curriculum
📚Open Source Curriculum for CNCF Certification Courses
nccgroup/AutoRepeater
Automated HTTP Request Repeating With Burp Suite
Netflix/consoleme
A Central Control Plane for AWS Permissions and Access
salesforce/cloudsplaining
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
deepfence/SecretScanner
:unlock: :unlock: Find secrets and passwords in container images and file systems :unlock: :unlock:
ahmetb/kubernetes-network-policy-recipes
Example recipes for Kubernetes Network Policies that you can just copy paste
cncf/tag-security
🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!
fugue/terraform-provider-fugue
Terraform Provider for Fugue
external-secrets/kubernetes-external-secrets
Integrate external secret management systems with Kubernetes
amrandazz/attack-guardduty-navigator
A MITRE ATT&CK Navigator export for AWS GuardDuty Findings
ovh/the-bastion
Authentication, authorization, traceability and auditability for SSH accesses.
stephank/lazyssh
A jump-host SSH server that starts machines on-demand
prowler-cloud/prowler
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
scalefactory/s3audit-ts
CLI tool for auditing S3 buckets
aws-samples/aws-secure-environment-accelerator
The AWS Secure Environment Accelerator is a tool designed to help deploy and operate secure multi-account, multi-region AWS environments on an ongoing basis. The power of the solution is the configuration file which enables the completely automated deployment of customizable architectures within AWS without changing a single line of code.
trek10inc/awsume-console-plugin
This is a plugin that enables you to use your assumed role credentials to open the AWS console in your default browser.
swisscom/detections
Threat intelligence and threat detection indicators (IOC, IOA)
isometry/vault-ssh-plus
Automatically use HashiCorp Vault SSH Client Key Signing with ssh(1)