Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

Automating situational awareness for cloud penetration tests.

☁️ ⚡ Granular, Actionable Adversary Emulation for the Cloud

veinmind-tools 是由长亭科技自研，基于 veinmind-sdk 打造的容器安全工具集

The easiest way to access AWS.

All-in-one Kubernetes access manager. User-level credentials, RBAC, SSO, audit logs.

Constellation is the first Confidential Kubernetes. Constellation shields entire Kubernetes clusters from the (cloud) infrastructure using confidential computing.

Awesome cloud enumerator

Query, provision and operate Cloud and SaaS resources and APIs using an extensible SQL based framework

Find cloud assets that no one wants exposed 🔎 ☁️

Identity & Access Management simplified and secure.

Powerful+Fast+Low Privilege Kubernetes discovery tools

Generate datasets of cloud audit logs for common attacks

A collection of cloud security icons ☁️🔒

Secret management by contract toolchain

The security workflow engine!

sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.

Detect drift. Defend cloud.

Modron - Cloud security compliance

Spotter is a comprehensive Kubernetes security scanner that uses CEL-based rules to identify security vulnerabilities, misconfigurations, and compliance violations across your Kubernetes clusters, manifests, and CI/CD pipelines.