References
AWS
| Description | URL |
|---|---|
| CLI Installation | https://docs.aws.amazon.com/cli/latest/userguide/getting-started-install.html |
| CIS Amazon Web Services Benchmarks | https://www.cisecurity.org/benchmark/amazon_web_services/ |
| AWS Foundational Security Best Practices | https://docs.aws.amazon.com/securityhub/latest/userguide/fsbp-standard.html |
| AWS Well-Architected Framework | https://docs.aws.amazon.com/wellarchitected/latest/framework/welcome.html |
Azure
| Description | URL |
|---|---|
| CLI Installation | https://learn.microsoft.com/en-us/cli/azure/install-azure-cli |
| CIS Microsoft Azure Benchmarks | https://www.cisecurity.org/benchmark/azure/ |
| Microsoft Cloud Security Benchmark | https://learn.microsoft.com/en-us/security/benchmark/azure/ |
| Azure Well-Architected Framework | https://learn.microsoft.com/en-us/azure/well-architected/ |
GCP
| Description | URL |
|---|---|
| Google Cloud Well-Architected Framework | https://cloud.google.com/architecture/framework |
| CLI Installation | https://cloud.google.com/sdk/docs/install |
| CIS Google Cloud Computing Platform Benchmarks | https://www.cisecurity.org/benchmark/google_cloud_computing_platform/ |
| Google Cloud Regions and Zones | https://cloud.google.com/compute/docs/regions-zones |
| Google Cloud Locations | https://cloud.google.com/about/locations |
| Google Cloud Roles | https://cloud.google.com/iam/docs/understanding-roles/ |
Docker
| Description | URL |
|---|---|
| Docker CLI Reference | https://docs.docker.com/engine/reference/commandline/cli/ |
| Docker Compose CLI Reference | https://docs.docker.com/engine/reference/commandline/compose/#child-commands |
SANS Cloud Security
| Description | URL |
|---|---|
| SANS Cloud Security | https://www.sans.org/cloud-security |
| Secure Service Configuration in AWS, Azure, and GCP Poster | https://www.sans.org/posters/secure-service-configuration-in-aws-azure-gcp/ |
MITRE
| Description | URL |
|---|---|
| MITRE ATT&CK Enterprise Matrix | https://attack.mitre.org/matrices/enterprise/ |
| MITRE ATT&CK Cloud Matrix | https://attack.mitre.org/matrices/enterprise/cloud/ |
| MITRE ATT&CK Navigator | https://mitre-attack.github.io/attack-navigator/ |
NIST
| Description | URL |
|---|---|
| NIST Cybersecurity Framework (CSF) v2.0 | https://www.nist.gov/cyberframework |
| NIST SP 800-207: Zero Trust Architecture | https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-207.pdf |
| NIST NCCoE Implementing a Zero Trust Architecture | https://www.nccoe.nist.gov/projects/implementing-zero-trust-architecture |
| NIST SP 800-53 Rev. 5 | https://csrc.nist.gov/pubs/sp/800/53/r5/upd1/final |
| NIST SP 800-82 Rev. 3 | https://csrc.nist.gov/pubs/sp/800/82/r3/final |
Cyber Forensics
| Description | URL |
|---|---|
| Autopsy Digital Forensics | https://www.autopsy.com/ |
| Rekall Memory Forensics | https://github.com/google/rekall |
| Volatility Framework (Memory Extraction) | https://github.com/volatilityfoundation/volatility |