aws-samples/aws-customer-playbook-framework: This repository provides sample templates for security playbooks against various scenarios when using Amazon Web Services.
Cloud
Cloud SecurityGitHub - gregsramblings/google-cloud-4-words: The Google Cloud Developer's Cheat Sheet
The Google Cloud Developer's Cheat Sheet. Contribute to priyankavergadia/google-cloud-4-words development by creating an account on GitHub.
Get started: Secure the enterprise environment - Cloud Adoption Framework | Microsoft Docs
Get started integrating security at critical points during your cloud adoption efforts and operations.
Cost-saving with NAT instances - The Guild
In this blog post I will outline our reasons for moving from NAT Gateways toward NAT instances, instead of the opposite direction.
Cloud storage security: What's new in the threat matrix | Microsoft Security Blog
We’re announcing the release of a second version of our threat matrix for storage services, a structured tool that assists in identifying and analyzing potential security threats on data stored in cloud storage services.
GitHub - aquia-inc/aws-guardduty-runbook-generator: Generates runbooks for GuardDuty findings
Generates runbooks for GuardDuty findings. Contribute to aquia-inc/aws-guardduty-runbook-generator development by creating an account on GitHub.
Getting into AWS cloud security research as a n00bcake - Meanderings by Daniel Grzelak
About - AWS Cloud Security Weekly
A hands-on style weekly newsletter for cloud security professional, including executives, focused on latest cloud security (especially AWS) news/releases/trends. Click to read AWS Cloud Security Weekly, by AWS-CloudSec Weekly Newsletter, a Substack publication. Launched a month ago.
AWS Security Monitoring in 2023: Untangle the chaos
Discover Effective AWS Security Monitoring Strategies. Combining the right AWS services is key when setting up AWS Security Monitoring.
AWS networking concepts: Lucidchart
Check out my Lucidchart document! Lucidchart is the intelligent diagramming solution that empowers teams to clarify complexity, align their insights, and build the future faster. Create your own diagram or flowchart at lucidchart.com.
AWS
Cloud CISO Perspectives: Early July 2023 | Google Cloud Blog
Google Cloud CISO Phil Venables talks with Royal Hansen, vice president of Privacy, Safety, and Security Engineering at Google, about red teaming AI and the Aspen Security Forum.
AWS CloudTrail cheat sheet
Incident Response in AWS made easy (easier 😉)
Announcing SCPkit - Tributary
An open-source service control policies management tool
Using Service Control Policies to protect security baselines | Wiz Blog
Service Control Policies (SCPs) can be a great way to prevent actions from happening in AWS accounts. In this post, we will illustrate a specific use case of SCPs that protects the security baseline, or landing zone, configuration you’ve created for accounts
Cloud Security Atlas | Datadog Security Labs
Datadog Cloud Security Atlas is a risk register for Threats and Vulnerabilities. This database gives you the ability to search and filter on your cloud provider platform, risk type, and sort by impact, exploitability, and recency.,Test out the search below by searching for specific cloud services like EBS or S3. From there you can chart your own course to understanding risk that relates to your environment.
The Big IAM Challenge
Put yourself to the test with our unique CTF challenge and boost your AWS IAM knowledge. Do you have what it takes to win The Big IAM Challenge?
Cloud Vulnerabilities & Security Issues Database
Cloud vulnerabilities database - an open project to list all known cloud vulnerabilities and Cloud Service Provider security issues
GitHub - iknowjason/Awesome-CloudSec-Labs: Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.
Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs. - GitHub - iknowjason/Awesome-CloudSec-Labs: Awesome free clou...
service-control-policy-examples/Deny-changes-to-security-services at main · aws-samples/service-control-policy-examples · GitHub
Example AWS Service control policies to get started or mature your usage of AWS SCPs. - service-control-policy-examples/Deny-changes-to-security-services at main · aws-samples/service-control-polic...
Elements of a Successful Cloud Security Program | PrimeHarbor Technologies, LLC
Stuff for social media
Quick Wins :: AWS Security Maturity Model
AWS Security Maturity Model
GitHub - aws-samples/service-control-policy-examples: Example AWS Service control policies to get started or mature your usage of AWS SCPs.
Example AWS Service control policies to get started or mature your usage of AWS SCPs. - GitHub - aws-samples/service-control-policy-examples: Example AWS Service control policies to get started or ...
gofireflyio/aiac: Artificial Intelligence Infrastructure-as-Code Generator.
Artificial Intelligence Infrastructure-as-Code Generator. - gofireflyio/aiac: Artificial Intelligence Infrastructure-as-Code Generator.
CloudZero: Cloud Cost Intelligence
CloudZero is the only cloud cost intelligence platform that puts engineering in control by connecting technical decisions to business results.
Cloud Operations
The Old Faithful: Why SSM Parameter Store still reigns over Secrets Manager | theburningmonk.com
Learn to build production-ready serverless applications on AWS
AWS KMS Threat Model
What are the threats in letting an AWS service manage the encryption of your data instead of creating a Customer Managed Key?
falcosecurity/falco: Cloud Native Runtime Security
Cloud Native Runtime Security. Contribute to falcosecurity/falco development by creating an account on GitHub.
Antivirus Scan for Amazon S3 bucket with demo!!
Amazon S3 is an object storage service that offers industry-leading scalability, data availability, security, and performance. Many…
