Cloud security engineers are notoriously overworked and under-resourced. This curated list has links to tools, frameworks and resources to make their lives easier.

Threat Research

• Cloud Security Alliance Research
• Google Project Zero
• Microsoft Security Response Center
• Orca Research Pod
• Rapid7 Research
• Team Nautilus by Aqua Security
• Unit 42 by Palo Alto Networks

Security Vendors

Publicly listed vendors

These are vendors with publicly traded stocks. The links lead to a vendor's website, LinkedIn company page and the stock price on Yahoo! Finance.

• Check Point | LinkedIn | CHKP
• CrowdStrike | LinkedIn | CRWD
• Datadog | LinkedIn | DDOG
• HashiCorp | LinkedIn | HCP
• Palo Alto Networks | LinkedIn | PANW
• Qualys | LinkedIn | QLYS
• Radware | LinkedIn | RDWR
• SentinelOne | LinkedIn | S
• Splunk | LinkedIn | SPLK
• Tenable | LinkedIn | TENB
• Zscaler | LinkedIn | ZS

Private Vendors

Venture-funded companies

• Aqua Security | LinkedIn | Crunchbase
• Astrix | LinkedIn | Crunchbase
• Bionic | LinkedIn | Crunchbase --> acquired by Crowdstrike
• Cyware | LinkedIn | Crunchbase
• Deepfence | LinkedIn | Crunchbase
• Dig Security | LinkedIn | Crunchbase
• Endor Labs | LinkedIn | Crunchbase
• GitGuardian | LinkedIn | Crunchbase
• JupiterOne | LinkedIn | Crunchbase
• Lacework | LinkedIn | Crunchbase
• Lightspin | LinkedIn | Crunchbase --> acquired by Cisco
• Mandiant | LinkedIn | Crunchbase --> acquired by Google
• Normalyze | LinkedIn | Crunchbase
• Noq | LinkedIn | Crunchbase
• Orca Security | LinkedIn | Crunchbase
• Query | LinkedIn | Crunchbase
• Pangea | Linkedin | Crunchbase
• Rapid7 | Linkedin | Crunchbase
• Runecast | LinkedIn | Crunchbase
• Scrut Automation | LinkedIn | Crunchbase
• Snyk | LinkedIn | Crunchbase
• Sonar | LinkedIn | Crunchbase
• Trellix | LinkedIn | Crunchbase
• UpGuard | LinkedIn | Crunchbase
• Wiz | LinkedIn | Crunchbase

Angel-funded companies

• Kloudle | LinkedIn | Crunchbase

Cloud Platforms

Native security products offered by the major cloud platforms (AWS, GCP, Azure)

• AWS Shared Responsibility Model
• GCP Shared responsibilities and shared fate on Google Cloud
• Azure Shared Responsibility in the cloud
• DigitalOcean Shared Responsibliity Model

GCP

• Chronicle Security Operations
• Chronicle SOAR
• Chronicle SIEM

AWS

• AWS Cloud Security
• Amazon Detective
• Amazon GuardDuty
• Amazon Security Lake
• AWS Artifact
• AWS Audit Manager
• AWS Config
• AWS Security Hub
• AWS Trusted Advisor

Azure / Microsoft

• Azure Security
• Azure Policy
• Microsoft Compliance
• Microsoft Defender for Cloud
• Microsoft Sentinel

Open Source Projects

• BloodHound
• Cartography
• Checkov
• Cloudquery
• CloudSploit
• DefectDojo
• Falco
• Gapps
• Greenbone OpenVAS Scanner
• Magpie
• Prowler
• Resoto
• S3Scanner
• Sadcloud
• ScoutSuite
• Steampipe
• tfsec
• ThreatMapper
• trivy
• Wazuh
• ZeusCloud

Security Frameworks

• CIS Benchmarks List
• CIS AWS Benchmarks
• CIS Google Cloud Computing Platform Benchmarks
• CIS Microsoft Azure Benchmarks
• CIS Oracle Cloud Benchmark
• NIST Security and Privacy Controls for Information Systems and Organizations

Conferences

• Billington Cybersecurity Summit
• Black Hat
• Deutscher IT Security Congress [2023]
• fwd:cloudsec
• RSAC