CloudSploit by Aqua is an open source program designed to detect security vulnerabilities in cloud infrastructure accounts, including Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform (GCP), Oracle Cloud Infrastructure (OCI) and GitHub.
It is designed to display a range of errors and security risks.
Provides GitHub account security features. Uses the GitHub API to download metadata about a GitHub account (repository number, configuration, security settings, etc.) which it then uses to give you best security practices.
Installation
$ git clone git@github.com: cloudsploit / scans.git
$ cd scans
$ npm install
$ ./index.js -h
Architecture
CloudSploit works in two phases. First, it queries the cloud infrastructure APIs for various metadata about your account, i.e. it is a phase “collectionς ”.
Once all the necessary data is collected, the result is transferred to the "scan" phase. The scan uses the collected data to look for possible configurations, risks and other security issues, which are the result.
Application snapshots
For more details on the program, go here.
Hi sir I am a beginner and i wanna start from the basics can u please send me a link to some of your beginner course via my email
Thank you