Pulumi
Pulumi is an Infrastructure as Code (IaC) platform that allows developers to manage cloud resources using familiar programming languages.
Codenotary Trustcenter
Codenotary's Trustcenter ensures the integrity and security of software supply chains in DevOps environments through artifact tracking, SBOM management, and VEX curation.
SecHub
A unified integration mechanism for managing multiple security tools and scanners through a simple API/client interface.
Aqua Security Software Supply Chain Security
Aqua Security's Software Supply Chain Security solution provides visibility and protection of the software development and distribution process.
CloudWorks
CloudWorks is a cloud security tool developed by the Air Force Research Laboratory that focuses on securing software development and deployment.
Lacework Cloud Security Assessment
A tool for automating the detection of vulnerabilities, compliance violations, and exposed secrets in cloud environments, particularly AWS.
SonarQube
A robust static code analysis tool for maintaining high code quality and security in software projects.
Wiz Security Assessment
A unified, cloud-native security platform that addresses complex security and operational challenges in cloud environments.
OWASP Juice Shop
A deliberately insecure web application designed to teach and test web application security skills.
Fugue
Fugue is a cloud compliance and security platform that integrates with the development lifecycle to ensure continuous compliance and security across cloud resources.
PentesterLab Cloud Security Exercises
Hands-on exercises focused on cloud security vulnerabilities, particularly in AWS and other cloud services.
Access Transparency
Access Transparency in Google Cloud Platform (GCP) provides detailed logs of all access events by Google personnel on customer data, ensuring visibility and auditability for security and compliance.