Open Source Cloud Security Tool.

Prowler is the Open Cloud Security platform for AWS, Azure, GCP, Kubernetes, M365 and more. It helps for continuous monitoring, security assessments & audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, ENS and more.

• Prowler @ GitHub.

Related contents:

• How to Complete Infrastructure Code Reviews Like a PRO @ microtica.

Terrascan is a static code analyzer for Infrastructure as Code.

Detect compliance and security violations across Infrastructure as Code (IaC) to mitigate risk before provisioning cloud native infrastructure.

• Terrascan @ GitHub.

Your unified cloud storages interface.

Sourcerer is a CLI-based cloud storage explorer that provides a unified interface for developers and DevOps engineers to view and manage files across multiple cloud providers like GCP Storage, Azure Storage, AWS S3, and S3-compatible services.

• Sourcerer @ GitHub.

AI data platform.

From data warehouse to autonomous data and AI platform

BigQuery is the autonomous data to AI platform, automating the entire data life cycle, from ingestion to AI-driven insights, so you can go from data to AI to action faster.

Gemini in BigQuery features are now included in BigQuery pricing models.

Related contents:

• BigQuery’s Ridiculous Pricing Model Cost Us $10,000 in Just 22 Seconds!!! @ Data Engineer Things.

A model for event interoperability between event producers and their consumers to favor better developer experience, robust integration, and infrastructural efficiency.

• Event Destinations Initiative @ GitHub.

Google's Mobile and Web App Development Platform.

Related contents:

• Burned by cloud (100k), looking at self hosting @ ServerlessHorrors.

Cloud native secrets management for developers - never leave your command line for secrets.

Never leave your terminal to use secrets while developing, testing, and building your apps.

Instead of custom scripts, tokens in your .zshrc files, visible EXPORTs in your bash history, misplaced .env.production files and more around your workstation -- just use teller and connect it to any vault, key store, or cloud service you like (Teller support Hashicorp Vault, AWS Secrets Manager, Google Secret Manager, and many more).

Fix Inventory is an open-source cloud asset inventory tool for infrastructure and security engineers.

Fix Inventory helps you identify and remove the most critical risks in AWS, GCP, Azure and Kubernetes.

Fix Inventory enables a broad set of exploration and automation scenarios. Its foundation is a graph-based data model, which exposes resource metadata and dependency relationships between your service's assets.

A powerful CLI allows you to search, explore, and manage your cloud resources.

• Fix Inventory.

Related contents:

• Fix Inventory - L'alternative open source aux scanners de sécurité cloud à 100 000 boules l'année @ Korben :fr:.

Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources.

Cloud Custodian enables you to manage your cloud resources by filtering, tagging, and then applying actions to them. The YAML DSL allows defininition of rules to enable well-managed cloud infrastructure that's both secure and cost optimized.

Cloud Custodian, also known as c7n, is a rules engine for managing public cloud accounts and resources. It allows users to define policies to enable a well managed cloud infrastructure, that's both secure and cost optimized. It consolidates many of the adhoc scripts organizations have into a lightweight and flexible tool, with unified metrics and reporting.

• Cloud Custodian @ GitHub.

Multi-cloud continuous delivery for the enterprise.

Spinnaker is an open source, multi-cloud continuous delivery platform for releasing software changes with high velocity and confidence.

Spinnaker provides application management and deployment to help you release software changes with high velocity and confidence. Spinnaker is an open-source, multi-cloud continuous delivery platform that combines a powerful and flexible pipeline management system with integrations to the major cloud providers. If you are looking to standardize your release processes and improve quality, Spinnaker is for you.

• Spinnaker @ GitHub.
• Why Airbnb moved away from a monolithic architecture @ StackSweep.

RedCloud OS is a Debian based Cloud Adversary Simulation Operating System for Red Teams to assess the security of leading Cloud Service Providers (CSPs). It includes tools optimized for adversary simulation tasks within Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP).

DNS and Service Discovery.

CoreDNS is a DNS server. It is written in Go. It can be used in a multitude of environments because of its flexibility.

CoreDNS is a DNS server/forwarder, written in Go, that chains plugins. Each plugin performs a (DNS) function.

CoreDNS can listen for DNS requests coming in over UDP/TCP (go'old DNS), TLS (RFC 7858), also called DoT, DNS over HTTP/2 - DoH - (RFC 8484) and gRPC (not a standard).

• CoreDNS @ GitHub.

Related contents:

• Coredns-manager-operator @ GitHub.