ameurdx Goto Github PK
Type: User
Type: User
This repo gives an overview of some GCP metadata API attack and defend patterns
A collection of various awesome lists for hackers, pentesters and security researchers
Resource types that can be publicly exposed on AWS
Automated Adversary Emulation
Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.
GCP and GSUITE security auditing scripts
CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
Cloud service provider security mistakes
Detect Tactics, Techniques & Combat Threats
Configs and snippets for Elastic Common Schema logging for Elastic SIEM
Give ScaleSec limited access to your GCP organization for a security assessment.
A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.
Exports primitive and predefined GCP IAM Roles and their permissions
Google Cloud function used to change the security group of a specified Compute instance. Can be used in conjunction with FortiOS automation to quarantine compromised hosts.
Inventory, analyze, and report on your GCP API keys in an automated fashion.
This repo contains all you need to begin automating Event Threat Detection findings.
These are tools we released with our 2020 defcon/blackhat talk https://www.youtube.com/watch?v=Ml09R38jpok
Demo of Terraform Build out for GCP - GKE, GCE
This project demonstrates a series of best practices for improving the security of containerized applications deployed to Kubernetes Engine. You will deploy multiple instances of the same container image with a variety of security settings to illustrate the use of RBAC, security contexts, and AppArmor policies.
This guide demonstrates how to improve the security of your Kubernetes Engine by applying fine-grained restrictions to network communication. You will provision a simple HTTP server and two client pods in a Kubernetes Engine cluster, then use a Network Policy restrict connections from client pods.
This project covers two use cases for RBAC within a Kubernetes Engine cluster. First, assigning different permissions to user personas. Second, granting limited API access to an application running within your cluster. Since RBAC's flexibility can occasionally result in complex rules, you will also perform common steps for troubleshooting RBAC as a part of the second scenario.
This project demonstrates a series of best practices for improving the security of containerized applications deployed to Kubernetes Engine. You will deploy multiple instances of the same container image with a variety of security settings to illustrate the use of RBAC, security contexts, and AppArmor policies.
The Google Cloud Developer's Cheat Sheet
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.