Cloud Security

GitOps for FedRAMP 20x - Flux, Kyverno, GKE, Terraform.

Learn about Chainguard’s secure container images that are built with minimal attack surface, constantly updated with security patches, and verified with SBOM and Sigstore. Hands-on exercises cover running, inspecting, and building applications with Chainguard base images.

Safe, isolated playground for testing AWS CLI commands without accessing real AWS resources or incurring costs. Uses LocalStack Community Edition to emulate AWS services locally in a Docker container.

Terraform modules for FedRAMP Moderate workloads on GCP.

Analyze Istio, Consul, and Linkerd configs for security issues with NIST 800-53 mappings.

An educational CTF platform featuring realistic security flaws in a modern trust center system. Includes Docker-based environment with Next.js frontend, FastAPI backend, and LocalStack for AWS emulation.

Complete walkthrough of flAWS.cloud CTF challenge covering AWS security misconfigurations including S3 bucket leaks, IAM permissions, EC2 snapshots, and metadata abuse. Includes video tutorial.