Leonidas Logo

Leonidas

0
Free
Cloud Security
Cloud Security
Sigma
Visit Website

This is the repository containing Leonidas, a framework for executing attacker actions in the cloud. It provides a YAML-based format for defining cloud attacker tactics, techniques and procedures (TTPs) and their associated detection properties. These definitions can then be compiled into: A web API exposing each test case as an individual endpoint Sigma rules (https://github.com/Neo23x0/sigma) for detection Documentation - see http://detectioninthe.cloud/ for an example. The API is deployed via an AWS-native CI/CD pipeline, and it is invoked via web requests secured by an API key. To build documentation or Sigma rules, you'll need to install the generator locally and can generate Sigma rules and documentation accordingly.

FEATURES

ALTERNATIVES

Cloudlist Logo
Cloudlist

A multi-cloud tool for centralizing assets across multiple clouds with minimal configuration.

Free
Cloud Security
Cloud_enum Logo
Cloud_enum

Multi-cloud OSINT tool for enumerating public resources in AWS, Azure, and Google Cloud.

Free
Cloud Security
CloudMapper Logo
CloudMapper

A tool to analyze and audit AWS environments for security issues and misconfigurations.

Free
Cloud Security
AWS Cloud Security Logo
AWS Cloud Security

AWS Cloud Security offers security services and compliance tools for securing data and applications on AWS.

Free
Cloud Security
Gatekeeper Library Logo
Gatekeeper Library

Gatekeeper is a policy management tool for Kubernetes that provides an extensible, parameterized policy library and native Kubernetes CRDs for instantiating and extending the policy library.

Free
Cloud Security
S3BucketList Logo
S3BucketList

Lists Amazon S3 Buckets while browsing

Free
Cloud Security
Kubeadm Logo
Kubeadm

Kubeadm is a tool for creating Kubernetes clusters with best practices.

Free
Cloud Security
AWSBucketDump Logo
AWSBucketDump

A security tool to identify interesting files in AWS S3 buckets

Free
Cloud Security

PINNED

Mandos Brief Newsletter Logo

Mandos Brief Newsletter

A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Resources
PTJunior Logo

PTJunior

An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.

Offensive Security
CTIChef.com Detection Feeds Logo

CTIChef.com Detection Feeds

A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

Threat Management
ImmuniWeb® Discovery Logo

ImmuniWeb® Discovery

ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

Attack Surface Management
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security