Get a demo

  • How it works
  • Blog
  • Media
  • About

Oct 13, 2020

Vladi Sandler

Written by



Useful Cloud Security
Tools and Links

Sharing is Caring


Being part of a community is powerful. At Lightspin, we learn so much from others all the time - peers, colleagues, partners, and customers; everyone leaves us with something useful. We are very thankful for the great cloud security community, and we also try to give back.

In the coming weeks, we will share our favorite cloud security resources and open source tools that can make your life easier.

To start us off, here is the first group of tools:

LEARN CLOUD NATIVE - An excellent resource to learn Kubernetes and Docker tips and tutorials with a cheatsheet. 


yq : A command line tool that will help you handle your YAML resources better - A great article about a tool similar to jq with an alternative and simpler approach, which can make templates of YAML files and combine them.


gke-auditor - I am personally not a big fan of open source tools which try to handle misconfigurations  but this specific one can help to save time looking for generic bugs and vulnerabilities.

Context is The Key to Achieving Security in the Cloud

When it comes to the security of your cloud environment, a single finding isn't enough to tell a full story. Context is the key to proactively protect native, Kubernetes, and microservices and start seeing your environment through an attacker’s eyes


----  Read more▸

Sharing is Caring - Useful AWS Tools and Links

This series gives our community the best tips and tricks for cloud environments. In this blog, Vladi presents his favorite resources and tips for the most popular IaaS provider, AWS.


----  Read more▸

About Lightspin

Lightspin’s contextual cloud security platform protects native, Kubernetes, and microservices from known and unknown risks. Using predictive graph-based technology, Lightspin empowers cloud and security teams to eliminate risks by proactively blocking all attack paths while maximizing productivity by dramatically reducing and prioritizing security alerts, to cut down remediation time.

More articles

The "We Don't Have CVEs on Our Public Assets" Misconception

So, you don’t have any CVEs? That doesn't mean your cloud is secure. It’s time to stop focusing on CVEs and start approaching security from the inside-out.


----  Read more▸