This repository stores various AWS and K8s security resources
- AWS 보안 점검 및 보안 설정 가이드
- CIS Amazon Web Services Foundations Benchmark v2.0.0
- AWS Foundational Security Best Practices (FSBP) standard
- AWS Cloud Security Checklist
- Ultimate Guide to Incident Response in AWS
- CIS Kubernetes Benchmark v1.8.0
- Kubernetes Hardening Guide
- K8s Security Checklist
- Securing a K8s Cluster
- EKS Best Practices Guides
- My AWS Pentest Methodology
- AWS IAM Privilege Escalation – Methods and Mitigation
- Detailed Analysis of CloudDon, Cloud Data Breach of Korea e-commerce company
- How I was able to access millions of ID cards on an e-commerce platform
- prowler - Security Vulnerability Scanner
- steampipe - zero-ETL solution for getting data directly from APIs and services
- CloudSploit - Cloud Security Posture Management(CSPM)
- check_imds - IMDSv1 Scanner
- pacu - AWS exploitation framework
- my-arsenal-of-aws-security-tools - List of open source tools for AWS security
- Trivy - Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes
- kube-bench - Checks whether Kubernetes is deployed according to CIS Kubernetes Benchmark
- kube-hunter - Hunt for security weaknesses in Kubernetes clusters
- managed-kubernetes-auditing-toolkit - identifying common security issues in EKS
- Kubescape - Kubernetes security platform for your clusters, CI/CD pipelines, and IDE
- Falco - Cloud Native Runtime Security
- Clair - Vulnerability Static Analysis for Containers