awesome-cloud-security/README.md

# Awesome Cloud Security [![Awesome](https://cdn.rawgit.com/sindresorhus/awesome/d7305f38d29fed78fa85652e3a63e154dd8e8829/media/badge.svg)](https://github.com/sindresorhus/awesome)
> Cloud Security blogs, podcasts, standards, projects, and examples.
## Contents
* [Public Cloud](#public-cloud)
* [Containers](#containers)
* [Cloud Security Standards](#cloud-security-standards)
* [Learning](#learning)
  * [Blogs](#blogs)
  * [Podcasts](#podcasts)
* [Projects](#projects)
  * [Benchmarking](#benchmarking)
  * [Data Loss Prevention](#data-loss-prevention)
  * [Identity and Access Mangement](#identity-and-access-management)
  * [Spring](#spring)
* [Examples](#examples)
  * [Automated Security Assessment](#ex-automated-security-assessment)
  * [Identity and Access Mangement](#ex-identity-and-access-management)
  * [Logging](#ex-logging)
* [Contribute](#contribute)
* [License](#license)
## Public Cloud
## Containers
* [Aqua Security - Trivy](https://github.com/aquasecurity/trivy)
* [Aqua Security - Cloudsploit](https://github.com/aquasecurity/cloudsploit)
* [Aqua Security - Kube-Bench](https://github.com/aquasecurity/kube-bench)
* [Aqua Security - Kube-Hunter](https://github.com/aquasecurity/kube-hunter)
* [Aqua Security - Kubectl-who-can](https://github.com/aquasecurity/kubectl-who-can)
* [Docker - Docker Bench for Security](https://github.com/docker/docker-bench-security)
* [Harbor - Harbor](https://github.com/goharbor/harbor)
## Cloud Security Standards
* [ISO/IEC 27017:2015](https://www.iso.org/standard/43757.html)
* [MTCS SS 584](https://www.imda.gov.sg/industry-development/infrastructure/ict-standards-and-frameworks/mtcs-certification-scheme/multi-tier-cloud-security-certified-cloud-services)
* [CCM](https://cloudsecurityalliance.org/group/cloud-controls-matrix)
* [NIST 800-53](https://nvd.nist.gov/800-53)
## Learning
### Blogs
* [AWS Security](https://aws.amazon.com/blogs/security/)
### Podcasts
## Projects
### Benchmarking
* [AWS Security Benchmark](https://github.com/awslabs/aws-security-benchmark)
### Data Loss Prevention
* [Git Secrets by awslabs](https://github.com/awslabs/git-secrets)
### Identity and Access Management
* [Aardvark by Netflix](https://github.com/Netflix-Skunkworks/aardvark)
* [Repokid by Netflix](https://github.com/Netflix/Repokid)
### Spring
* [Spring Cloud Security](https://github.com/dschadow/CloudSecurity)
## Examples
### Ex. Automated Security Assessment
* [AWS Config Rules Repository](https://github.com/awslabs/aws-config-rules)
* [AWS Inspector Agent Autodeploy](https://github.com/awslabs/amazon-inspector-agent-autodeploy)
* [AWS Inspector Auto Remediation](https://github.com/awslabs/amazon-inspector-auto-remediate)
* [AWS Inspector Lambda Finding Processor](https://github.com/awslabs/amazon-inspector-finding-forwarder)
### Ex. Identity and Access Management
* [Amazon Cognito Streams connector for Amazon Redshift](https://github.com/awslabs/amazon-cognito-streams-sample)
### Ex. Logging
* [AWS Centralized Logging](https://github.com/awslabs/aws-centralized-logging)
* [AWS Config Snapshots to ElasticSearch](https://github.com/awslabs/aws-config-to-elasticsearch)
* [AWS CloudWatch Events Monitor Security Groups](https://github.com/awslabs/cwe-monitor-secgrp)
### Ex. Web Application Firewall
* [AWS WAF Sample](https://github.com/awslabs/aws-waf-sample)
* [AWS WAF Security Automations](https://github.com/awslabs/aws-waf-security-automations)
## Contribute
Contributions welcome! Read the [contribution guidelines](contributing.md) first.
## License
[![CC0](http://mirrors.creativecommons.org/presskit/buttons/88x31/svg/cc-zero.svg)](http://creativecommons.org/publicdomain/zero/1.0)

To the extent possible under law, Jacob Silva has waived all copyright and
related or neighboring rights to this work.
Formatting 2017-05-28 19:49:36 -04:00			`# Awesome Cloud Security [![Awesome](https://cdn.rawgit.com/sindresorhus/awesome/d7305f38d29fed78fa85652e3a63e154dd8e8829/media/badge.svg)](https://github.com/sindresorhus/awesome)`
Cloud Security Standards - Init 2017-05-29 07:53:05 -04:00			`> Cloud Security blogs, podcasts, standards, projects, and examples.`
Formatting 2017-05-28 19:49:36 -04:00			`## Contents`
ReOrganize 2021-05-29 13:45:59 -04:00			`* [Public Cloud](#public-cloud)`
			`* [Containers](#containers)`
Cloud Security Standards - Init 2017-05-29 07:53:05 -04:00			`* [Cloud Security Standards](#cloud-security-standards)`
ReOrganize 2021-05-29 13:45:59 -04:00			`* [Learning](#learning)`
			`* [Blogs](#blogs)`
			`* [Podcasts](#podcasts)`
Fix ToC 2017-05-28 19:33:51 -04:00			`* [Projects](#projects)`
Restructuring 2017-05-28 20:02:32 -04:00			`* [Benchmarking](#benchmarking)`
Projects - Spring Cloud Security 2017-05-29 08:01:51 -04:00			`* [Data Loss Prevention](#data-loss-prevention)`
Netflix 2017-06-06 07:42:11 -04:00			`* [Identity and Access Mangement](#identity-and-access-management)`
Projects - Spring Cloud Security 2017-05-29 08:01:51 -04:00			`* [Spring](#spring)`
Fix ToC 2017-05-28 19:33:51 -04:00			`* [Examples](#examples)`
Netflix 2017-06-06 07:42:11 -04:00			`* [Automated Security Assessment](#ex-automated-security-assessment)`
Formatting 2017-06-06 07:43:25 -04:00			`* [Identity and Access Mangement](#ex-identity-and-access-management)`
Netflix 2017-06-06 07:42:11 -04:00			`* [Logging](#ex-logging)`
Formatting 2017-05-28 19:49:36 -04:00			`* [Contribute](#contribute)`
			`* [License](#license)`
ReOrganize 2021-05-29 13:45:59 -04:00			`## Public Cloud`
			`## Containers`
ReOrganize 2021-05-29 15:07:14 -04:00			`* [Aqua Security - Trivy](https://github.com/aquasecurity/trivy)`
			`* [Aqua Security - Cloudsploit](https://github.com/aquasecurity/cloudsploit)`
			`* [Aqua Security - Kube-Bench](https://github.com/aquasecurity/kube-bench)`
			`* [Aqua Security - Kube-Hunter](https://github.com/aquasecurity/kube-hunter)`
			`* [Aqua Security - Kubectl-who-can](https://github.com/aquasecurity/kubectl-who-can)`
			`* [Docker - Docker Bench for Security](https://github.com/docker/docker-bench-security)`
			`* [Harbor - Harbor](https://github.com/goharbor/harbor)`
Cloud Security Standards - Init 2017-05-29 07:53:05 -04:00			`## Cloud Security Standards`
			`* [ISO/IEC 27017:2015](https://www.iso.org/standard/43757.html)`
			`* [MTCS SS 584](https://www.imda.gov.sg/industry-development/infrastructure/ict-standards-and-frameworks/mtcs-certification-scheme/multi-tier-cloud-security-certified-cloud-services)`
Cloud Security Standards - Fix 2017-05-29 07:56:44 -04:00			`* [CCM](https://cloudsecurityalliance.org/group/cloud-controls-matrix)`
Cloud Security Standards - Init 2017-05-29 07:53:05 -04:00			`* [NIST 800-53](https://nvd.nist.gov/800-53)`
ReOrganize 2021-05-29 13:45:59 -04:00			`## Learning`
			`### Blogs`
			`* [AWS Security](https://aws.amazon.com/blogs/security/)`
			`### Podcasts`
Init 2017-05-28 19:31:47 -04:00			`## Projects`
Projects - Spring Cloud Security 2017-05-29 08:01:51 -04:00			`### Benchmarking`
			`* [AWS Security Benchmark](https://github.com/awslabs/aws-security-benchmark)`
Restructuring 2017-05-28 20:02:32 -04:00			`### Data Loss Prevention`
Netflix 2017-06-06 07:39:52 -04:00			`* [Git Secrets by awslabs](https://github.com/awslabs/git-secrets)`
Netflix 2017-06-06 07:42:11 -04:00			`### Identity and Access Management`
			`* [Aardvark by Netflix](https://github.com/Netflix-Skunkworks/aardvark)`
			`* [Repokid by Netflix](https://github.com/Netflix/Repokid)`
Projects - Spring Cloud Security 2017-05-29 08:01:51 -04:00			`### Spring`
			`* [Spring Cloud Security](https://github.com/dschadow/CloudSecurity)`
Restructuring 2017-05-28 20:02:32 -04:00			`## Examples`
Netflix 2017-06-06 07:42:11 -04:00			`### Ex. Automated Security Assessment`
Init 2017-05-28 19:31:47 -04:00			`* [AWS Config Rules Repository](https://github.com/awslabs/aws-config-rules)`
			`* [AWS Inspector Agent Autodeploy](https://github.com/awslabs/amazon-inspector-agent-autodeploy)`
			`* [AWS Inspector Auto Remediation](https://github.com/awslabs/amazon-inspector-auto-remediate)`
			`* [AWS Inspector Lambda Finding Processor](https://github.com/awslabs/amazon-inspector-finding-forwarder)`
Formatting 2017-06-06 07:43:25 -04:00			`### Ex. Identity and Access Management`
			`* [Amazon Cognito Streams connector for Amazon Redshift](https://github.com/awslabs/amazon-cognito-streams-sample)`
Netflix 2017-06-06 07:42:11 -04:00			`### Ex. Logging`
Init 2017-05-28 19:31:47 -04:00			`* [AWS Centralized Logging](https://github.com/awslabs/aws-centralized-logging)`
			`* [AWS Config Snapshots to ElasticSearch](https://github.com/awslabs/aws-config-to-elasticsearch)`
			`* [AWS CloudWatch Events Monitor Security Groups](https://github.com/awslabs/cwe-monitor-secgrp)`
Netflix 2017-06-06 07:42:11 -04:00			`### Ex. Web Application Firewall`
Init 2017-05-28 19:31:47 -04:00			`* [AWS WAF Sample](https://github.com/awslabs/aws-waf-sample)`
Formatting 2017-05-28 19:49:36 -04:00			`* [AWS WAF Security Automations](https://github.com/awslabs/aws-waf-security-automations)`
			`## Contribute`
			`Contributions welcome! Read the [contribution guidelines](contributing.md) first.`
			`## License`
			`[![CC0](http://mirrors.creativecommons.org/presskit/buttons/88x31/svg/cc-zero.svg)](http://creativecommons.org/publicdomain/zero/1.0)`

			`To the extent possible under law, Jacob Silva has waived all copyright and`
			`related or neighboring rights to this work.`