homepage
Open menu
Go one level top
Train and Certify
Get Started in Cyber
Courses & Certifications
Training Roadmap
Search For Training
Online Training
OnDemand
Live Training
Summits
Cyber Ranges
College Degrees & Certificates
NICE Framework
DoDD 8140
Specials
Manage Your Team
Overview
Security Awareness Training
Voucher Program
Private Training
Workforce Development
Skill Assessments
Hiring Opportunities
Resources
Overview
Reading Room
Webcasts
Newsletters
Blog
Tip of The Day
Posters
Top 25 Programming Errors
The Critical Security Controls
Security Policy Project
Critical Vulnerability Recaps
Affiliate Directory
Focus Areas
Blue Team Operations
Cloud Security
Digital Forensics & Incident Response
Industrial Control Systems
Leadership
Offensive Operations
Get Involved
Overview
SANS Community
CyberTalent
Work Study
Instructor Development
Sponsorship Opportunities
COINS
About
About SANS
Why SANS?
Instructors
Cybersecurity Innovation Awards
Contact
Frequently Asked Questions
Customer Reviews
Press Room
Log In
Join
Contact Us
SANS Sites
GIAC Security Certifications
Internet Storm Center
SANS Technology Institute
Security Awareness Training
Search
Home
>
Cloud Security
>
Tools
Cloud Security Tools
SANS Instructors have built more than 150 open source tools that support your work and help you implement better security.
Puma Scan
By Eric Johnson - Puma Scan is an open source software security analyzer for C# applications. Puma Scan provides a Visual Studio extension for scanning source code in the development environment and displaying vulnerabilities as spell check and compiler warnings.
Learn More about Puma Scan
Serverless Prey
By Eric Johnson & Brandon Evans - Serverless Prey is a collection of serverless functions (FaaS) for GCP Functions, Azure Functions, and AWS Lambda. Once launched to the environment and invoked, these functions establish a TCP reverse shell for the purposes of introspecting the container runtimes...
Learn More about Serverless Prey
cx-scan
By Dave Hazar - This project helps automate onboarding and scanning in Checkmarx (on-premise only) and enables the use of instance profiles with cross-account access to AWS CodeCommit repositories. This enables organizations to onboard projects without gathering and maintaining credentials for...
Learn More about cx-scan
Kubesec
By ControlPlane & Andy Martin - Kubesec is security risk analysis for Kubernetes resources, as a web service or admission controller. It takes a Kubernetes pod-like resource as input, and returns a score based on the security configuration. If the configuration is too risky and the score too low,...
Learn More about Kubesec
Kubernetes Simulator
By ControlPlane & Andy Martin - Simulator is a Kubernetes Security Training Platform. It teaches Red and Blue teams to exploit and mitigate security vulnerabilities in a Kubernetes cluster with real-world infrastructure and configuration, leading to experience usually only found whilst attacking...
Learn More about Kubernetes Simulator
netassert
By ControlPlane & Andy Martin - This is a security testing framework for fast, safe iteration on firewall, routing, and NACL rules for Kubernetes (Network Policies, services) and non-containerized hosts (cloud provider instances, VMs, bare metal). It aggressively parallelizes nmap to test outbound...
Learn More about netassert
Review Security Groups
By Ben Allen - A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.
Learn More about Review Security Groups
Review all the free tools
here
.