Nuvola
Nuvola (with the lowercase n) is a tool to dump and perform automatic and manual security analysis on AWS environments configurations and services using predefined, extensible and custom rules created using a simple Yaml syntax. The general idea behind this project is to create an abstracted digital twin of a cloud platform. For a more concrete example: nuvola reflects the BloodHound traits used for Active Directory analysis but on cloud environments (at the moment only AWS). The usage of a graph database also increases the possibility of finding different and innovative attack paths and can be used as an offline, centralised and lightweight digital twin. Quick Start Requirements: - docker-compose installed - an AWS account configured to be used with awscli with full access to the cloud resources, better if in ReadOnly mode (the policy arn:aws:iam::aws:policy/ReadOnlyAccess is fine) Setup: - Clone the repository: git clone --depth=1 https://github.com/primait/nuvola.git; cd nuvola - Create and edit, if required, the .env file to set your DB username/password/URL: cp .env_example .env; You may need to edit the size of the memory allocated to Neo4j if you run the tool on a low-RAM device.
FEATURES
ALTERNATIVES
minikube implements a local Kubernetes cluster for easy application development and supports various Kubernetes features.
AWS serverless cloud security tool for parsing and alerting on CloudTrail logs using EQL.
Open-source policy-as-code software for multi-cloud and SaaS environments with GPT model conversations and custom analysis policies.
Generate Amazon GuardDuty findings related to real AWS resources with multiple tests available.
An open-source security tool for AWS, Azure, Google Cloud, and Kubernetes security assessments and audits.
A collection of tools for forensics teams to collect evidence from cloud platforms
An open source cloud security platform for discovering, prioritizing, and remediating risks in the cloud.
Exploring the transition towards real sandbox containers and the differences in privileges compared to traditional sandboxes like Chrome.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Kriptos
An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.