A brief introduction to the conference, the mission of Open Cloud Security, and what to expect from today’s sessions.

Open-source security is evolving—what does that mean for defenders? Gab Columbro will share insights on the state of open-source security, its impact on cloud security practitioners, and how we can build more resilient security ecosystems together.

A Server Side Chat on where we are, where we’re headed, and what really matters in open cloud security. Expect real talk about security challenges, open-source innovation, and the future of cloud security.

Cloud misconfigurations are among the most exploited attack vectors today. In this session, Sandeep Singh from ProjectDiscovery shows how open source tools like Nuclei and Subfinder can automate and scale cloud pentesting across AWS and multi-cloud environments. Learn how to uncover misconfigurations, identify weak IAM roles, and embrace open methodologies for more transparent and effective cloud defense.

Based on new survey data from over 650 security practitioners, this session explores how teams are adopting open cloud security tools to improve visibility, reduce breaches, and lower costs. Rajiv and Laura will share insights on where organizations are thriving—and where they’re still struggling—with automation, compliance, and cloud complexity.

Faced with high costs from AWS Private CA, Q-Solution—providers of managed services to the UK government—built an open-source, serverless certificate authority for under $5/month per environment. This session covers the technical design, a live demo of the CA in action, and lessons from deploying it for a secure, accredited UK government community. Learn how you can use this lightweight solution to enable mTLS for cloud-native applications.

As container adoption grows, so do the risks—misconfigurations, vulnerabilities, and supply chain threats. In this session, you’ll learn how DockSec, an open-source AI-powered Docker Security Analyzer, helps detect issues, enforce best practices, and integrate real-time remediation into CI/CD pipelines. See how GPT-powered analysis enhances traditional tools like Trivy, Hadolint, and Docker Scout. Ideal for DevSecOps engineers, SREs, and cloud security teams. Includes a live demo and practical tips for integrating DockSec into GitHub Actions, Jenkins, and VS Code.

Learn how to set up a full-featured cloud Security Operations Center (SOC) using open source tools—covering SIEM, CSPM, EDR, and SOAR—with little to no cost. This session walks through practical integrations and architecture patterns for small teams looking to monitor threats in the cloud without the price tag of traditional SOC solutions.

Security tools are stronger when we build together. This talk explores how composable architectures—like those behind Steampipe, Powerpipe, Tailpipe, and Flowpipe—enable sharing of queries, detections, and controls across teams and tools. Learn practical patterns for assembling open source building blocks to solve complex multi-cloud security challenges and create a more collaborative, scalable security ecosystem.

This session explores how modern detection teams are moving beyond unit tests to adopt end-to-end testing strategies. Learn how to simulate attacks, capture real telemetry, and validate full detection pipelines to improve reliability and reduce false confidence. A must-attend for detection engineers looking to level up their testing practices.

At the heart of the Open Cloud Security movement, Prowler is helping teams secure AWS, Azure, GCP, and Kubernetes using fully open-source tooling. In this session, Prowler engineers will dive into how the tool scales across complex environments, supports compliance-as-code, and integrates into DevSecOps pipelines. You’ll also get a first look at the upcoming roadmap—and how the community is shaping the future of open cloud security.