Cloud security engineers are notoriously overworked and under-resourced. This curated list has links to tools, frameworks and resources to make their lives easier.
- Cloud Security Alliance Research
- Google Project Zero
- Microsoft Security Response Center
- Orca Research Pod
- Rapid7 Research
- Team Nautilus by Aqua Security
- Unit 42 by Palo Alto Networks
These are vendors with publicly traded stocks. The links lead to a vendor's website, LinkedIn company page and the stock price on Yahoo! Finance.
- Check Point | LinkedIn | CHKP
- CrowdStrike | LinkedIn | CRWD
- Datadog | LinkedIn | DDOG
- HashiCorp | LinkedIn | HCP
- Palo Alto Networks | LinkedIn | PANW
- Qualys | LinkedIn | QLYS
- Radware | LinkedIn | RDWR
- SentinelOne | LinkedIn | S
- Splunk | LinkedIn | SPLK
- Tenable | LinkedIn | TENB
- Varonis | LinkedIn | VRNS
- Zscaler | LinkedIn | ZS
Venture-funded companies
- AccuKnox | LinkedIn | Crunchbase
- Aikido | LinkedIn | Crunchbase
- Aqua Security | LinkedIn | Crunchbase
- Arnica | LinkedIn | Crunchbase
- Astrix | LinkedIn | Crunchbase
- Avalor | LinkedIn | Crunchbase
- Cyera | LinkedIn | Crunchbase
- Cyscale | LinkedIn | Crunchbase
- Cyware | LinkedIn | Crunchbase
- Darktrace | LinkedIn | Crunchbase
- Deepfence | LinkedIn | Crunchbase
- Eureka Security | LinkedIn | Crunchbase
- Endor Labs | LinkedIn | Crunchbase
- Entro | LinkedIn | Crunchbase
- GitGuardian | LinkedIn | Crunchbase
- Grip Security | LinkedIn | Crunchbase
- Hunters | LinkedIn | Crunchbase
- JupiterOne | LinkedIn | Crunchbase
- Kloudle | LinkedIn | Crunchbase
- Lacework | LinkedIn | Crunchbase
- Lightlytics | LinkedIn | Crunchbase
- Lineaje | LinkedIn | Crunchbase
- Matano | LinkedIn | Crunchbase
- Metomic | LinkedIn | Crunchbase
- Netwrix | LinkedIn | Crunchbase
- Normalyze | LinkedIn | Crunchbase
- Noq | LinkedIn | Crunchbase
- OpenRaven | Linkedin | Crunchbase
- Orca Security | LinkedIn | Crunchbase
- OpsHelm | LinkedIn | Crunchbase
- Query | LinkedIn | Crunchbase
- Pangea | Linkedin | Crunchbase
- Permiso | LinkedIn | Crunchbase
- PingSafe | LinkedIn | Crunchbase
- Prevasio | LinkedIn | Crunchbase
- Rapid7 | Linkedin | Crunchbase
- Runecast | LinkedIn | Crunchbase
- RunReveal | LinkedIn | Crunchbase
- Seemplicity | LinkedIn | Crunchbase
- Sentra | LinkedIn | Crunchbase
- Scrut Automation | LinkedIn | Crunchbase
- Slauth | LinkedIn | Crunchbase
- Snyk | LinkedIn | Crunchbase
- Sonar | LinkedIn | Crunchbase
- Sonrai Security | LinkedIn | Crunchbase
- Sophos | LinkedIn | Crunchbase
- Soveren | LinkedIn | Crunchbase
- Spyderbat | LinkedIn | Crunchbase
- StrongDM | LinkedIn | Crunchbase
- Sweet Security | Linkedin | Crunchbase
- Tigera | LinkedIn | Crunchbase
- Tines | LinkedIn | Crunchbase
- Torq | LinkedIn | Crunchbase
- Trellix | LinkedIn | Crunchbase
- Twingate | LinkedIn | Crunchbase
- UpGuard | LinkedIn | Crunchbase
- Upwind | LinkedIn | Crunchbase
- Wazuh | LinkedIn | Crunchbase
- Wiz | LinkedIn | Crunchbase
- Bionic | LinkedIn | Crunchbase --> acquired by Crowdstrike
- Cider Security | LinkedIn | Crunchbase --> acquired by Palo Alto Networks
- Dig Security | LinkedIn | Crunchbase --> acquired by Palo Alto Networks
- Ermetic | LinkedIn | Crunchbase --> acquired by Tenable
- Laminar | LinkedIn | Crunchbase --> acquired by Rubrik
- Lightspin | LinkedIn | Crunchbase --> acquired by Cisco
- Mandiant | LinkedIn | Crunchbase --> acquired by Google
Native security products offered by the major cloud platforms (AWS, GCP, Azure)
- AWS Shared Responsibility Model
- GCP Shared responsibilities and shared fate on Google Cloud
- Azure Shared Responsibility in the cloud
- DigitalOcean Shared Responsibliity Model
- AWS Cloud Security
- Amazon Detective
- Amazon GuardDuty
- Amazon Security Lake
- AWS Artifact
- AWS Audit Manager
- AWS Config
- AWS Security Hub
- AWS Trusted Advisor
- Altimeter
- BloodHound
- Cartography
- Checkov
- Cilium
- Cloudbeat
- Cloudquery
- CloudSploit
- DefectDojo
- Falco
- Gapps
- Greenbone OpenVAS Scanner
- KubeArmor
- Magpie
- Prowler
- Resoto
- S3Scanner
- Sadcloud
- ScoutSuite
- Steampipe
- tfsec
- ThreatMapper
- trivy
- Wazuh
- ZeusCloud
- ASPM - Application Security Posture Management
- CAASM - Cyber Asset Attack Surface Management
- CASB - Cloud Access Security Brokers
- CIEM - Cloud Infrastructure Entitlement Management
- CNAPP - Cloud-native Application Protection Platform
- CSPM - Cloud Security Posture Management
- CWPP - Cloud Workload Protection Platform
- DSPM - Data Security Posture Management
- EDR - Endpoint Detection and Response
- GRC - Governance, Risk and Compliance
- IGA - Identity Governance Administration
- MDR - Managed Detection and Response
- PAM - Privileged Access Management
- SIEM - Security Information and Event Management
- SOAR - Security Orchestration, Automation and Response
- SOC - Security Operations Center
- XDR - Extended Detection and Response
- Nextdoor CSPM Evaluation Matrix GitHub
- Simple CSPM - GCP CSPM using Google Sheets GitHub
- Prisma Cloud Channel Resource GitHub
- What is eBPF? eBPF Docs
- Building a Security Graph Application on Amazon Neptune GitHub
- CloudSecList by Marco Lancini
- Frankly Speaking by Frank Wang
- Securing the Cloud by Brandon Carroll
- tl;dr sec by Clint Gibler
- Venture in Security by Ross Haleliuk