Dimension scores are derived from public data and fields; weighted into the composite. Reference only.
Kurtis Velarde is a personal security research and tutorial site positioned around Cloud Native Security Tutorials & Research. The page indicates that the author has around 15 years of experience in data center and cloud environments, with a focus on AI security research, cloud security engineering, detection and response, and using LLMs to automate modern security workflows. It is more of a knowledge base and research blog than a SaaS product or enterprise security platform.
Based on its content categories, the site covers areas such as Build Security, Container Security, Runtime Security, Linux & Systems, and Attack Scenarios. Topics include SBOM generation, vulnerability scanning, supply chain security, Docker hardening, malicious images and container escapes, Kubernetes monitoring, Falco, Gatekeeper and runtime defense, as well as Linux capabilities and low-level system security. A notable strength is that it covers both defensive practices and attack scenarios, which helps readers understand attack-and-defense chains in cloud-native environments. However, the available text does not indicate that it provides deployable software, a console, policy management, alert orchestration, or enterprise-grade integrations.
The crawled content does not disclose a pricing model, subscription fees, payment methods, or commercial licensing information. It also does not mention compliance certifications such as SOC 2, ISO 27001, or GDPR. Deployment options are likewise unclear: based on the current information, it can only be identified as a public tutorial website, and there is no basis to conclude that it supports private deployment, cloud SaaS, agents, or sensor-based deployment.
Its strengths are a focused topic scope and coverage of key cloud-native security areas such as supply chain, container, runtime, and Kubernetes protection. The author states that the tutorials are validated against production workloads, so they may have strong practical value. The downside is that it is not a complete commercial product and lacks SLA commitments, technical support, alerting workflows, team permissions, audit reports, and integration documentation. The content volume also appears limited from the page, with only a small number of tutorials in each category.
It is suitable for cloud security engineers, blue-team detection and response personnel, and Kubernetes/container security practitioners as a learning and solution-design reference. It is not suitable as a primary security platform for enterprise procurement. The main content does not provide information about access from China, so real-world testing is needed; payment information is also not disclosed. If you need a productized alternative, consider Aqua Security, Sysdig Secure, Prisma Cloud, or building your own capabilities with Falco, Gatekeeper, and the official Kubernetes security documentation.
⚠ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on kurtis.sh official site.
kurtis.sh is an United States Security provider. TG4G tracks its product information, an overall rating of 6.0/10, and a China-accessibility score of China direct-connect friendly. Click "Visit Official Site" to reach kurtis.sh directly.