Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

• UpdatedFeb 20, 2026
• C

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

• UpdatedNov 18, 2025
• HTML

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

• UpdatedNov 20, 2025
• Go

Free Security and Hacking eBooks

• UpdatedJul 10, 2019

A Central Control Plane for AWS Permissions and Access

• UpdatedFeb 11, 2026
• Python

An encyclopedia for offensive and defensive security knowledge in cloud native technologies.

• UpdatedFeb 10, 2026
• Dockerfile

🛡️ Awesome Cloud Security Resources ⚔️

• UpdatedNov 8, 2024

Automating situational awareness for cloud penetration tests.

• UpdatedFeb 20, 2026
• Go

☁️ ⚡ Granular, Actionable Adversary Emulation for the Cloud

• UpdatedFeb 13, 2026
• Go

Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.

• UpdatedFeb 14, 2026
• JavaScript

awesome cloud security 收集一些国内外不错的云安全资源，该项目主要面向国内的安全人员

• UpdatedOct 28, 2024

Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS

• UpdatedJan 8, 2025
• Rust

veinmind-tools 是由长亭科技自研，基于 veinmind-sdk 打造的容器安全工具集

• UpdatedJan 10, 2024
• Go

The easiest way to access AWS.

• UpdatedFeb 15, 2026
• Go

Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security

• UpdatedJan 28, 2026

PacBot (Policy as Code Bot)

• UpdatedDec 8, 2022
• Java

TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.

• UpdatedJul 13, 2025
• HCL

All-in-one Kubernetes access manager. User-level credentials, RBAC, SSO, audit logs.

• UpdatedJan 29, 2026
• Go

Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.

• UpdatedDec 8, 2022
• Shell

Constellation is a Kubernetes distribution for confidential computing, securing entire clusters on untrusted infrastructure. Constellation is in maintenance mode. New development continues in Contrast, which provides workload-level confidential computing using Confidential Containers. 👉https://github.com/edgelesssys/contrast

• UpdatedJan 22, 2026
• Go