diff --git a/README.md b/README.md index c27fbac..bf867e3 100644 --- a/README.md +++ b/README.md @@ -1,16 +1,8 @@ # Awesome Cloud Security [![Awesome](https://cdn.rawgit.com/sindresorhus/awesome/d7305f38d29fed78fa85652e3a63e154dd8e8829/media/badge.svg)](https://github.com/sindresorhus/awesome) - > Cloud Security blogs, podcasts, standards, projects, and examples. - - ## Contents - * [Public Cloud](#public-cloud) * [Containers](#containers) - * [Vulnerability Scanning](#vuln) - * [Static](#static-analysis) - * [Dynamic](#dynamic-analysis) - * [Kubernetes](#kubernetes) * [Cloud Security Standards](#cloud-security-standards) * [Learning](#learning) * [Blogs](#blogs) @@ -26,77 +18,52 @@ * [Logging](#ex-logging) * [Contribute](#contribute) * [License](#license) - ## Public Cloud ## Containers -### Vulnerability Scanning -#### Static Analysis -#### Dynamic Analysis -### Kubernetes +* [Aqua Security - Trivy](https://github.com/aquasecurity/trivy) +* [Aqua Security - Cloudsploit](https://github.com/aquasecurity/cloudsploit) +* [Aqua Security - Kube-Bench](https://github.com/aquasecurity/kube-bench) +* [Aqua Security - Kube-Hunter](https://github.com/aquasecurity/kube-hunter) +* [Aqua Security - Kubectl-who-can](https://github.com/aquasecurity/kubectl-who-can) +* [Docker - Docker Bench for Security](https://github.com/docker/docker-bench-security) +* [Harbor - Harbor](https://github.com/goharbor/harbor) ## Cloud Security Standards - * [ISO/IEC 27017:2015](https://www.iso.org/standard/43757.html) * [MTCS SS 584](https://www.imda.gov.sg/industry-development/infrastructure/ict-standards-and-frameworks/mtcs-certification-scheme/multi-tier-cloud-security-certified-cloud-services) * [CCM](https://cloudsecurityalliance.org/group/cloud-controls-matrix) * [NIST 800-53](https://nvd.nist.gov/800-53) ## Learning - ### Blogs - * [AWS Security](https://aws.amazon.com/blogs/security/) - ### Podcasts - ## Projects - ### Benchmarking - * [AWS Security Benchmark](https://github.com/awslabs/aws-security-benchmark) - ### Data Loss Prevention - * [Git Secrets by awslabs](https://github.com/awslabs/git-secrets) - ### Identity and Access Management * [Aardvark by Netflix](https://github.com/Netflix-Skunkworks/aardvark) * [Repokid by Netflix](https://github.com/Netflix/Repokid) - ### Spring - * [Spring Cloud Security](https://github.com/dschadow/CloudSecurity) - ## Examples - ### Ex. Automated Security Assessment - * [AWS Config Rules Repository](https://github.com/awslabs/aws-config-rules) * [AWS Inspector Agent Autodeploy](https://github.com/awslabs/amazon-inspector-agent-autodeploy) * [AWS Inspector Auto Remediation](https://github.com/awslabs/amazon-inspector-auto-remediate) * [AWS Inspector Lambda Finding Processor](https://github.com/awslabs/amazon-inspector-finding-forwarder) - ### Ex. Identity and Access Management - * [Amazon Cognito Streams connector for Amazon Redshift](https://github.com/awslabs/amazon-cognito-streams-sample) - ### Ex. Logging - * [AWS Centralized Logging](https://github.com/awslabs/aws-centralized-logging) * [AWS Config Snapshots to ElasticSearch](https://github.com/awslabs/aws-config-to-elasticsearch) * [AWS CloudWatch Events Monitor Security Groups](https://github.com/awslabs/cwe-monitor-secgrp) - ### Ex. Web Application Firewall - * [AWS WAF Sample](https://github.com/awslabs/aws-waf-sample) * [AWS WAF Security Automations](https://github.com/awslabs/aws-waf-security-automations) - - ## Contribute - Contributions welcome! Read the [contribution guidelines](contributing.md) first. - - ## License - [![CC0](http://mirrors.creativecommons.org/presskit/buttons/88x31/svg/cc-zero.svg)](http://creativecommons.org/publicdomain/zero/1.0) To the extent possible under law, Jacob Silva has waived all copyright and