Awesome cloud enumerator
☆1,116Mar 9, 2025Updated last year
Alternatives and similar repositories for CloudBrute
Users that are interested in CloudBrute are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.☆2,063Jul 12, 2025Updated 9 months ago
- Validate proxies for specific domain☆39Aug 14, 2021Updated 4 years ago
- Automated Attack Simulation in the Cloud, complete with detection use cases.☆613Nov 28, 2024Updated last year
- Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.☆649Nov 21, 2019Updated 6 years ago
- Automating situational awareness for cloud penetration tests.☆2,340Updated this week
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆1,019Apr 10, 2026Updated last week
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆5,136Mar 30, 2026Updated 2 weeks ago
- A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure☆769Oct 14, 2023Updated 2 years ago
- The Swiss Army knife for automated Web Application Testing☆2,328May 8, 2024Updated last year
- Scan for misconfigured S3 buckets across S3-compatible APIs!☆3,050Dec 11, 2025Updated 4 months ago
- This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage clou…☆2,806Apr 6, 2026Updated last week
- CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.☆535Mar 7, 2022Updated 4 years ago
- Find cloud assets that no one wants exposed 🔎 ☁️☆347Jul 20, 2020Updated 5 years ago
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findin…☆7,444Apr 10, 2026Updated last week
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3☆2,069Jan 2, 2024Updated 2 years ago
- 🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.☆4,929Apr 11, 2026Updated last week
- OSINT tools and more but without API key☆1,503Feb 15, 2026Updated 2 months ago
- Making Favicon.ico based Recon Great again !☆1,272Aug 29, 2023Updated 2 years ago
- A collection of scripts for assessing Microsoft Azure security☆2,344Mar 15, 2026Updated last month
- Multi-Cloud Security Auditing Tool☆7,625Sep 23, 2025Updated 6 months ago
- Contextual Content Discovery Tool☆3,145Apr 29, 2024Updated last year
- reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via E…☆8,551Mar 21, 2026Updated 3 weeks ago
- Fast GitHub recon tool. Scans for leaked secrets across all of GitHub, not just known repos and orgs. Support for GitHub dorks.☆1,412Feb 10, 2026Updated 2 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Convolutional neural network for analyzing pentest screenshots☆1,279Mar 8, 2026Updated last month
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆438Dec 30, 2025Updated 3 months ago
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,812May 22, 2024Updated last year
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆3,048Mar 7, 2026Updated last month
- Search exposed EBS volumes for secrets☆301Apr 24, 2023Updated 2 years ago
- Rockyou for web fuzzing☆3,121Mar 11, 2026Updated last month
- CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool☆3,541Updated this week
- A collection of Azure AD/Entra tools for offensive and defensive security purposes☆2,582Feb 5, 2026Updated 2 months ago
- A Modern Orchestration Engine for Security☆6,193Apr 6, 2026Updated last week
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned ent…☆2,154Feb 23, 2026Updated last month
- Gotator is a tool to generate DNS wordlists through permutations.☆511Jul 17, 2022Updated 3 years ago
- Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling☆1,265Mar 19, 2025Updated last year
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆2,428May 26, 2024Updated last year
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆1,074Mar 24, 2026Updated 3 weeks ago
- A python script that finds endpoints in JavaScript files☆4,324Apr 13, 2024Updated 2 years ago
- A fast tool to scan CRLF vulnerability written in Go☆1,529Updated this week