Cloud Security

Learn best practices that can help you meet your security and compliance goals using AWS infrastructure and services.

A collection of AWS Security related workshops

Security is paramount in any IT infrastructure, and is even more critical where the public cloud is concerned.

Answers the question, what is DevSecOps, and introduces 5 ways to implement it. Learn to guard against security vulnerabilities with DevSecOps tools.

Generates runbooks for GuardDuty findings. Contribute to aquia-inc/aws-guardduty-runbook-generator development by creating an account on GitHub.

A hands-on style weekly newsletter for cloud security professional, including executives, focused on latest cloud security (especially AWS) news/releases/trends. Click to read AWS Cloud Security Weekly, by AWS-CloudSec Weekly Newsletter, a Substack publication. Launched a month ago.

Discover Effective AWS Security Monitoring Strategies. Combining the right AWS services is key when setting up AWS Security Monitoring.

An open-source service control policies management tool

Service Control Policies (SCPs) can be a great way to prevent actions from happening in AWS accounts. In this post, we will illustrate a specific use case of SCPs that protects the security baseline, or landing zone, configuration you’ve created for accounts

Datadog Cloud Security Atlas is a risk register for Threats and Vulnerabilities. This database gives you the ability to search and filter on your cloud provider platform, risk type, and sort by impact, exploitability, and recency.,Test out the search below by searching for specific cloud services like EBS or S3. From there you can chart your own course to understanding risk that relates to your environment.

Cloud vulnerabilities database - an open project to list all known cloud vulnerabilities and Cloud Service Provider security issues

Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs. - GitHub - iknowjason/Awesome-CloudSec-Labs: Awesome free clou...

Example AWS Service control policies to get started or mature your usage of AWS SCPs. - service-control-policy-examples/Deny-changes-to-security-services at main · aws-samples/service-control-polic...

Stuff for social media

Example AWS Service control policies to get started or mature your usage of AWS SCPs. - GitHub - aws-samples/service-control-policy-examples: Example AWS Service control policies to get started or ...

Artificial Intelligence Infrastructure-as-Code Generator. - gofireflyio/aiac: Artificial Intelligence Infrastructure-as-Code Generator.

Learn to build production-ready serverless applications on AWS

What are the threats in letting an AWS service manage the encryption of your data instead of creating a Customer Managed Key?

Cloud Native Runtime Security. Contribute to falcosecurity/falco development by creating an account on GitHub.

Amazon S3 is an object storage service that offers industry-leading scalability, data availability, security, and performance. Many…

Collection of semi-useful Service Control Policies and scripts to manage them - jchrisfarris/aws-service-control-policies: Collection of semi-useful Service Control Policies and scripts to manage them

Need faster security validation for Cloud services? We've got you covered! Accelerate your service onboarding with our threat models and actionable security controls. Updated continuously.

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc. - toniblyx/my-arsenal-of-aws-security-tools: List of open source tools for AWS security: defensive, offensive,...

With more than 100 trillion objects in Amazon Simple Storage Service (Amazon S3) and an almost unimaginably broad set of use cases, securing data stored in Amazon S3 is important for every organization. So, we’ve curated the top 10 controls for securing your data in S3. By default, all S3 buckets are private and can […]

Antivirus for Amazon S3. Contribute to widdix/aws-s3-virusscan development by creating an account on GitHub.

An AWS tool to help you create a point in time assessment of your AWS account using Prowler and Scout as well as optional AWS developed ransomware checks. - GitHub - awslabs/aws-security-assessmen...