paulschwarzenberger's Stars
prowler-cloud/prowler
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
projectdiscovery/subfinder
Fast passive subdomain enumeration tool.
hashicorp/terraform-provider-aws
The AWS Provider enables Terraform to manage AWS resources.
getmoto/moto
A library that allows you to easily mock out tests based on AWS infrastructure.
OWASP/wstg
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
nccgroup/ScoutSuite
Multi-Cloud Security Auditing Tool
michenriksen/aquatone
A Tool for Domain Flyovers
cloud-custodian/cloud-custodian
Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources
philips-labs/terraform-aws-github-runner
Terraform module for scalable GitHub action runners on AWS
common-fate/granted
The easiest way to access your cloud.
SummitRoute/csp_security_mistakes
This repo has been replaced by https://www.cloudvulndb.org
ramimac/aws-customer-security-incidents
A repository of breaches of AWS customers
ovotech/gitoops
all paths lead to clouds
domain-protect/domain-protect
OWASP Domain Protect - prevent subdomain takeover
hashishrajan/cloud-security-vulnerabilities
List of all the Publicly disclosed vulnerabilities of Public Cloud Provider like Amazon Web Services (AWS), Microsoft Azure, Google Cloud, Oracle Cloud, IBM Cloud etc
aws-actions/aws-secretsmanager-get-secrets
connelldave/botocove
A simple decorator to run Python functions across multiple AWS accounts, OUs and/or regions, with or without an AWS Organization.
domain-protect/domain-protect-gcp
Protect against subdomain takeover
serverless-ca/terraform-aws-ca
Terraform module for serverless certificate authority on AWS
Macmod/STARS
A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services that could possibly lead to subdomain takeover scenarios.
c-icap/c-icap-server
serverless-ca/cloud-ca
Cloud CA built using AWS CA Terraform Module
domain-protect/domain-protect-deploy
Deploy Domain Protect in your AWS Organization using GitHub Actions
ovotech/kiss
AWS-based secrets management for Kubernetes
OWASP/www-project-domain-protect
OWASP Foundation Web Respository
ovotech/VertFlow
Run Docker containers on Airflow using green energy.
daniel-infosec/csp-ip-lookup
API and Website to check if an IP address belongs to a Cloud Service Provider
Celidor/aws-iam-roles-anywhere
Testing AWS IAM Roles Anywhere
domain-protect/domain-protect-gcp-deploy
Deploy Domain Protect in your GCP Organization using GitHub Actions
serverless-ca/alb
AWS Application Load Balancer for testing mTLS with open-source cloud Certificate Authority