Awesome cloud enumerator
☆1,121Mar 9, 2025Updated last year
Alternatives and similar repositories for CloudBrute
Users that are interested in CloudBrute are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.☆2,070Jul 12, 2025Updated 9 months ago
- Validate proxies for specific domain☆39Aug 14, 2021Updated 4 years ago
- Automated Attack Simulation in the Cloud, complete with detection use cases.☆613Nov 28, 2024Updated last year
- Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.☆651Nov 21, 2019Updated 6 years ago
- Automating situational awareness for cloud penetration tests.☆2,370Apr 21, 2026Updated 2 weeks ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆1,022Apr 29, 2026Updated last week
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆5,166Apr 27, 2026Updated last week
- A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure☆771Oct 14, 2023Updated 2 years ago
- The Swiss Army knife for automated Web Application Testing☆2,335May 8, 2024Updated 2 years ago
- Scan for misconfigured S3 buckets across S3-compatible APIs!☆3,068Apr 25, 2026Updated last week
- This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage clou…☆2,812Apr 6, 2026Updated last month
- CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.☆536Mar 7, 2022Updated 4 years ago
- Find cloud assets that no one wants exposed 🔎 ☁️☆347Jul 20, 2020Updated 5 years ago
- reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and findin…☆7,494Updated this week
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3☆2,071Jan 2, 2024Updated 2 years ago
- OSINT tools and more but without API key☆1,515Feb 15, 2026Updated 2 months ago
- 🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.☆4,959May 1, 2026Updated last week
- Making Favicon.ico based Recon Great again !☆1,279Aug 29, 2023Updated 2 years ago
- A collection of scripts for assessing Microsoft Azure security☆2,374Mar 15, 2026Updated last month
- Multi-Cloud Security Auditing Tool☆7,644Sep 23, 2025Updated 7 months ago
- Contextual Content Discovery Tool☆3,165Apr 29, 2024Updated 2 years ago
- reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via E…☆8,601Mar 21, 2026Updated last month
- Fast GitHub recon tool. Scans for leaked secrets across all of GitHub, not just known repos and orgs. Support for GitHub dorks.☆1,415Feb 10, 2026Updated 2 months ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Convolutional neural network for analyzing pentest screenshots☆1,281Mar 8, 2026Updated 2 months ago
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆437Dec 30, 2025Updated 4 months ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆3,060Mar 7, 2026Updated 2 months ago
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,824May 22, 2024Updated last year
- Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned ent…☆2,167Feb 23, 2026Updated 2 months ago
- Search exposed EBS volumes for secrets☆302Apr 24, 2023Updated 3 years ago
- Rockyou for web fuzzing☆3,141Mar 11, 2026Updated last month
- CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool☆3,561Apr 28, 2026Updated last week
- A collection of Azure AD/Entra tools for offensive and defensive security purposes☆2,598Feb 5, 2026Updated 3 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A Modern Orchestration Engine for Security☆6,221Apr 30, 2026Updated last week
- Gotator is a tool to generate DNS wordlists through permutations.☆515Jul 17, 2022Updated 3 years ago
- Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling☆1,268Mar 19, 2025Updated last year
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆2,446May 26, 2024Updated last year
- A fast tool to scan CRLF vulnerability written in Go☆1,531Apr 13, 2026Updated 3 weeks ago
- A python script that finds endpoints in JavaScript files☆4,335Apr 13, 2024Updated 2 years ago
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆1,078Mar 24, 2026Updated last month