LambdaGuard is an AWS Lambda auditing tool designed to create asset visibility and provide actionable results. It provides a meaningful overview in terms of statistical analysis, AWS service dependencies and configuration checks from the security perspective. Requirements: * Python 3.6+ * Java 11 (optional for SonarQube) Install: * From PyPI: pip3 install lambdaguard * From Github: git clone https://github.com/Skyscanner/lambdaguard cd lambdaguard sudo make install AWS Access: * You will need a set of AWS access keys and permissions to run LambdaGuard. * Create a profile in ~/.aws/credentials with the newly created keys. * Alternatively, you can use the keys directly as CLI arguments (not recommended). Run: * lambdaguard --help * lambdaguard --function arn:aws:lambda:function * lambdaguard --input function-arns.txt * lambdaguard --output /tmp/lambdaguard * lambdaguard --profile LambdaGuardProf
Automated script for creating a vulnerable Azure cloud lab to train offensive security skills.
Cloud Security Suite (cs-suite) - Version 3.0 Usage for cloud security audits on AWS, GCP, Azure, and DigitalOcean.
S3Scanner scans for misconfigured S3 buckets across S3-compatible APIs, identifying potential security vulnerabilities and data exposure risks.
Cloud Custodian (c7n) is a rules engine for managing public cloud accounts and resources with a focus on security, compliance, and cost optimization.
A command-line tool to get valuable information out of AWS CloudTrail and a general purpose toolbox for working with IAM policies
Comprehensive suite of tools and resources by Microsoft Azure for ensuring security and protection of data and applications in the cloud.
Analyzes CloudTrail data of a given AWS account and generates a summary of recently active IAM principals, API calls they made, as well as regions, IP addresses and user agents they used.
Multi-cloud OSINT tool for enumerating public resources in AWS, Azure, and Google Cloud.
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.