Configuration for simple file-based Vault

Развертывание IdP KeyCloak с хранением и получением пар логин/пароль через сервис Yandex Cloud Lockbox.

An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources about Secrets Management Process in Cybersecurity.

This repo demonstrates how to fetch secrets from Azure Key Vault using the Kubernetes External Secrets operator. It leverages OIDC authentication and Azure Workload Identity to securely access the vault from within a Kubernetes cluster. The implementation uses K3d, OpenTofu, and Terragrunt for infrastructure provisioning, showcasing GitOps practice

Example Lambda native and container application deployments leveraging Skroutz's aws-lambda-secrets extension for AWS SecretsManager

Main Repo for Talks

Encrypting secrets with KMS when transferring keys to the COI VM container in Yandex Cloud.

A demo of HashiCorp Vault with multiple use cases, deployable on almost any platform.

Easy SSH with Vault & GitHub auth on AWS

Terraform module which creates service principals (SPN) in Azure AD, assign role assignments in Azure and creates service connections in Azure DevOps. And, not least, you have the option to automatically rotate the client secret.

Cloud native config management.

Terraform module to configure Vault for GitHub OIDC authentication from Action runners.

An example pipeline for executing HashiCorp Terraform with ephemeral cloud provider credentials managed by HashiCorp Vault

Terraform module to populate AWS Systems Manager (SSM) Parameter Store with values from Terraform. Works great with Chamber.