Cloud security engineers are notoriously overworked and under-resourced. This curated list has links to tools, frameworks and resources to make their lives easier.
- Cloud Security Alliance Research
- Google Project Zero
- Microsoft Security Response Center
- Orca Research Pod
- Rapid7 Research
- Team Nautilus by Aqua Security
- Unit 42 by Palo Alto Networks
- ThreatLabz by Zscaler
- Vedre Labs by Forescout
These are vendors with publicly traded stocks. The links lead to a vendor's website, LinkedIn company page and the stock price on Yahoo! Finance.
- Check Point | LinkedIn | CHKP
- CrowdStrike | LinkedIn | CRWD
- Datadog | LinkedIn | DDOG
- HashiCorp | LinkedIn | HCP
- Palo Alto Networks | LinkedIn | PANW
- Qualys | LinkedIn | QLYS
- Radware | LinkedIn | RDWR
- SentinelOne | LinkedIn | S
- Splunk | LinkedIn | SPLK
- Tenable | LinkedIn | TENB
- Varonis | LinkedIn | VRNS
- Zscaler | LinkedIn | ZS
Venture-funded companies
-
Aikido | LinkedIn | Crunchbase
-
ARMO | LinkedIn | Crunchbase
-
Arnica | LinkedIn | Crunchbase
-
Astrix | LinkedIn | Crunchbase
-
Curity | LinkedIn | Crunchbase
-
Cyera | LinkedIn | Crunchbase
-
Cyware | LinkedIn | Crunchbase
-
Entro | LinkedIn | Crunchbase
-
Matano | LinkedIn | Crunchbase
-
Noq | LinkedIn | Crunchbase
-
Query | LinkedIn | Crunchbase
-
Pangea | Linkedin | Crunchbase
-
Rapid7 | Linkedin | Crunchbase
-
Sentra | LinkedIn | Crunchbase
-
Slauth | LinkedIn | Crunchbase
-
Snyk | LinkedIn | Crunchbase
-
Sonar | LinkedIn | Crunchbase
-
Sophos | LinkedIn | Crunchbase
-
Tigera | LinkedIn | Crunchbase
-
Tines | LinkedIn | Crunchbase
-
Torq | LinkedIn | Crunchbase
-
Upwind | LinkedIn | Crunchbase
-
Wazuh | LinkedIn | Crunchbase
-
Wiz | LinkedIn | Crunchbase
-
- Avalor | LinkedIn | Crunchbase --> [aquired by Zscaler]
- Bionic | LinkedIn | Crunchbase --> acquired by Crowdstrike
- Cider Security | LinkedIn | Crunchbase --> acquired by Palo Alto Networks
- Dig Security | LinkedIn | Crunchbase --> acquired by Palo Alto Networks
- Ermetic | LinkedIn | Crunchbase --> acquired by Tenable
- Isovalent | LinkedIn | Crunchbase --> acquired by Cisco
- Laminar | LinkedIn | Crunchbase --> acquired by Rubrik
- Lightspin | LinkedIn | Crunchbase --> acquired by Cisco
- Mandiant | LinkedIn | Crunchbase --> acquired by Google
- Raftt | LinkedIn | Crunchbase --> acquired by Wiz
- Spera | LinkedIn | Crunchbase --> acquired by Okta
Ordrered by date (descending)
Ordered by date (descending)
- Talon, $825M - December 2023
- Dig Security, $350M - December 2023
- Cider Security, $198M - December 2022
- Expanse, $797M - December 2020
- Crypsis, $228M - September 2020
- Cloudgenix, $403M - April 2020
- Aporeto, $144M - December 2019
- Twistlock, $378M - July 2019
- Demisto, $474M - March 2019
- RedLock, $158M - October 2018
- Secdo, $83M - April 2018
- Evident.io, $293M - March 2018
- Cyvera, $178M - April 2014
- Bridgecrew, $157M - March 2021
- Aporeto, $144M - December 2019
- Lightcyber, $103M - February 2017
Ordered by data (descending)
- Airgap Networks (https://airgap.io/)
- Avalor (https://www.avalor.io/)
- Canonic Security (https://www.canonic.security/)
- Trustdome
- Smokescreen
- Shiftright
- Appsulate
- Edgewise Networks
Native security products offered by the major cloud platforms (AWS, GCP, Azure)
- AWS Shared Responsibility Model
- GCP Shared responsibilities and shared fate on Google Cloud
- Azure Shared Responsibility in the cloud
- DigitalOcean Shared Responsibliity Model
- AWS Cloud Security
- Amazon Detective
- Amazon GuardDuty
- Amazon Security Lake
- AWS Artifact
- AWS Audit Manager
- AWS Config
- AWS Security Hub
- AWS Trusted Advisor
- Altimeter
- BloodHound
- Cartography
- Checkov
- Cilium
- Cloudbeat
- Cloudquery
- CloudSploit
- DefectDojo
- Falco
- Gapps
- Greenbone OpenVAS Scanner
- KubeArmor
- KubeScape
- Magpie
- Prowler
- Resoto
- S3Scanner
- Sadcloud
- ScoutSuite
- Steampipe
- tfsec
- ThreatMapper
- trivy
- Wazuh
- ZeusCloud
- ASPM - Application Security Posture Management
- CAASM - Cyber Asset Attack Surface Management
- CASB - Cloud Access Security Brokers
- CIEM - Cloud Infrastructure Entitlement Management
- CNAPP - Cloud-native Application Protection Platform
- CSPM - Cloud Security Posture Management
- CWPP - Cloud Workload Protection Platform
- DSPM - Data Security Posture Management
- EDR - Endpoint Detection and Response
- GRC - Governance, Risk and Compliance
- IGA - Identity Governance Administration
- MDR - Managed Detection and Response
- PAM - Privileged Access Management
- SIEM - Security Information and Event Management
- SOAR - Security Orchestration, Automation and Response
- SOC - Security Operations Center
- XDR - Extended Detection and Response
- Nextdoor CSPM Evaluation Matrix GitHub
- Simple CSPM - GCP CSPM using Google Sheets GitHub
- Prisma Cloud Channel Resource GitHub
- What is eBPF? eBPF Docs
- Building a Security Graph Application on Amazon Neptune GitHub
- CloudSecList by Marco Lancini
- Frankly Speaking by Frank Wang
- Securing the Cloud by Brandon Carroll
- tl;dr sec by Clint Gibler
- Venture in Security by Ross Haleliuk