An authorization library that supports access control models like ACL, RBAC, ABAC in Golang: https://discord.gg/S5UjpzGZjN

Open Source Cloud Native Application Protection Platform (CNAPP)

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

IAM Least Privilege Policy Generator

awesome cloud security 收集一些国内外不错的云安全资源，该项目主要面向国内的安全人员

A tool for quickly evaluating IAM permissions in AWS.

This repo includes Books and imp notes related to GCP, Azure, AWS, Docker, K8s, and DevOps. More, exam and interview prep notes.

T Wiki 云安全知识文库，可能是国内首个云安全知识文库？

Cloudlist is a tool for listing Assets from multiple Cloud Providers.

Extensible auto-tagger for your IaC files. The ultimate way to link entities in the cloud back to the codified resource which created it.

Open Source Cloud Security

A secure low code honeypot framework, leveraging AI for System Virtualization.

文章 Attack Code 的详细全文。安全和开发总是具有伴生属性，尤其是云的安全方向，本篇文章是希望能帮助到读者的云安全入门材料。Full text of the article Attack Code. Security and development always have concomitant attributes, and this is especially true with the security direction of the cloud. This article is an introduction to cloud security that I hope will help readers.

TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.

LC（List Cloud）是一个多云攻击面资产梳理工具

Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)

Vajra is a UI-based tool with multiple techniques for attacking and enumerating in the target's Azure and AWS environment. It features an intuitive web-based user interface built with the Python Flask module for a better user experience. The primary focus of this tool is to have different attacking techniques all at one place with web UI interfa…

Microsoft Sentinel SOC Operations

A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat landscape such as cloud ransomware and supply chain attacks.