Skip to main content

Show HN: ZeusCloud (YC W22) – open-source cloud security https://ift.tt/kHzuK7p

Show HN: ZeusCloud (YC W22) – open-source cloud security Hey folks - last month, we open sourced ZeusCloud (https://ift.tt/ukX9yxK) - a platform to identify, prioritize, and remediate security risks in your cloud environment. ZeusCloud thinks like an attacker. It identifies security risks in your environment like infra misconfigurations, over-permissive identities, and workload vulnerabilities. And it pieces them together to show you attack paths like a publicly exposed VM with a critical CVE has effective admin access. Some highlights of the ZeusCloud platform: - Graphical attack paths so you can prioritize the risks in your cloud with context - An asset inventory of your compute, networking, and IAM assets to give you further visibility into your AWS environments - An interactive access explorer view that shows you how IAM users/roles can access S3 buckets, EC2 instances, etc. for blast radius analysis We know other cloud security products exist. But, in our experience, they’re often inaccessible or fail to show you sufficient context behind security findings. The project is still early - we’ve focused so far on infra misconfiguration and identity risks. Looking to add vulnerabilities to the attack paths through tools like Project Discovery (nuclei) and Burpsuite next. Check out our GitHub (Licensed Apache 2.0): https://ift.tt/ukX9yxK Play around with our Sandbox environment: https://ift.tt/4HRUJ6Y Get Started (free/self-hosted): https://ift.tt/THuRpxb Would love to hear what you think! May 3, 2023 at 09:53PM
Labels:

Comments

Post a Comment

Popular posts from this blog

Show HN: StreetComplete, an OpenStreetMap Editor for Humans https://ift.tt/2J8IL02

Show HN: StreetComplete, an OpenStreetMap Editor for Humans StreetComplete is an OpenStreetMap[0] editor directed at people who want to contribute and want to do this using their smartphone, without learning how to edit things[1]. It is available as an Android application. It is intended to be used as one walks, with quests appearing as markers on the map. Selecting a marker allows one to answer a simple question. The answer will be added to the OpenStreetMap database, with app handling selecting objects for editing, transforming answer into OSM tags and making edits. OpenStreetMap account is needed to apply edits, but it is possible to start without it, make some edits and login/register later. Note: I am not the main author, but I am one of the active contributors. Github page is at https://ift.tt/2g8lasH and https://ift.tt/3nR9PzS shows what was recently released. [0]OpenStreetMap is a Wikipedia of maps, available on the open licence. This dataset is already used for many interestin...
Post a Comment
Read more https//reachsingh.blogspot.com»

Women Pioneers at Muni: Adeline Svendsen and Muni’s First Newsletter

Women Pioneers at Muni: Adeline Svendsen and Muni’s First Newsletter By Jeremy Menzies To close out Women’s History Month, here’s a look back at one woman whose work to bring Muni staff together in the late 1940s created a legacy that lives on to this day. Adeline “Addy” Svendsen was founding editor of Muni’s first internal newsletter, “ Trolley Topics .” Adeline Svendsen sits at her desk in the Geneva Carhouse office building in this 1949 shot. Trolley Topics was a new venture when it started in February 1946. As Svendsen wrote in the first issue it was created, “to bring a little fun, a little news, and a lot of good will to all our fellow employees in the Railway.” Just two years prior in 1944, Muni merged with the Market Street Railway Company, expanding the small municipal operation into the largest transit provider in the city with hundreds of employees, vehicles of every shape and size, and dozens of facilities scattered across town. The newsletter was meant to help unite ...
Post a Comment
Read more https//reachsingh.blogspot.com»