404tk/cloudtoolkit

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/404tk/cloudtoolkit)

404tk / cloudtoolkit

Authorized cloud adversary simulation and validation toolkit

☆107

Alternatives and similar repositories for cloudtoolkit

Users that are interested in cloudtoolkit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

404tk / lazyscan
View on GitHub
☆11Nov 22, 2022Updated 3 years ago
404tk / credcollect
View on GitHub
Automatic credential collection
☆21Aug 17, 2022Updated 3 years ago
libaibaia / cloudSec
View on GitHub
云安全利用工具-云平台AK/SK-WEB利用工具，添加AK/SK自动检测资源，无需手动执行，支持云服务器、存储桶、数据库操作
☆588Dec 19, 2024Updated last year
AlphabugX / Alphalog
View on GitHub
DNSLOG、httplog、rmilog、ldaplog、jndi 等都支持,完全匿名产品(fuzz.red)，Alphalog与传统DNSLog不同，更快、更安全。
☆457Aug 20, 2025Updated 8 months ago
emo-crab / ysoserial-rs
View on GitHub
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
☆69Feb 5, 2023Updated 3 years ago
Managed Kubernetes at scale on DigitalOcean • Ad
DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
sccmdaveli / hikvision-ivms-exp
View on GitHub
海康威视iVMS 综合安防任意文件上传漏洞使用exp
☆24Jun 13, 2023Updated 2 years ago
Jlan45 / ysoserialSecond
View on GitHub
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
☆15Jul 28, 2023Updated 2 years ago
wyzxxz / aksk_tool
View on GitHub
AK资源管理工具，阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret，利用AK获取资源信息和操作资源，ECS/CVM/E2/UHOST/ECI/BCC执行命令，OSS/COS/S3/BOS…
☆781Feb 13, 2025Updated last year
AbstractClass / CloudPrivs
View on GitHub
Determine privileges from cloud credentials via brute-force testing.
☆69Aug 22, 2024Updated last year
JC175 / CVE-2022-32119
View on GitHub
CVE-2022-32119 - Arox-Unrestricted-File-Upload
☆17Dec 20, 2023Updated 2 years ago
Ptkatz / OrcaC2
View on GitHub
OrcaC2是一款基于Websocket加密通信的多功能C&C框架，使用Golang实现。
☆677Dec 30, 2022Updated 3 years ago
altEr1125 / ShiroAttack2
View on GitHub
一款针对Shiro550漏洞进行快速漏洞利用工具。对 @SummerSec 大佬的项目https://github.com/SummerSec/ShiroAttack2 进行了一些改进。
☆251May 29, 2023Updated 2 years ago
Teklvtn / pc_wechat_miniapp_des
View on GitHub
微信pc小程序包解密
☆45Jul 17, 2021Updated 4 years ago
Muhammad-Ali007 / OutlookNTLM_CVE-2023-23397
View on GitHub
☆22Jul 15, 2023Updated 2 years ago
Virtual machines for every use case on DigitalOcean • Ad
Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
burpheart / koko-moni
View on GitHub
一个基于网络空间搜索引擎的攻击面管理平台，可定时进行资产信息爬取，及时发现新增资产，本项目聚合了 Fofa、Hunter、Quake、Zoomeye 和 Threatbook 的数据源，并对获取到的数据进行去重与清洗
☆460Apr 19, 2023Updated 3 years ago
ustayready / golddigger
View on GitHub
☆198Jan 18, 2023Updated 3 years ago
Li4n0 / revsuit
View on GitHub
RevSuit is a flexible and powerful reverse connection platform designed for receiving connection from target host in penetration.
☆563Jun 1, 2023Updated 2 years ago
5wimming / gadgetinspector
View on GitHub
利用链、漏洞检测工具
☆375Jul 31, 2024Updated last year
RixedLabs / IDLE-Abuse
View on GitHub
A method to execute shellcode using RegisterWaitForInputIdle API.
☆55Apr 4, 2023Updated 3 years ago
novysodope / RMI_Inj_MemShell
View on GitHub
rmi打内存马工具，适用于目标用不了ldap的情况
☆254Jul 12, 2023Updated 2 years ago
Y3A / CVE-2023-28229
View on GitHub
☆137Jan 8, 2024Updated 2 years ago
UzJu / Cloud-Bucket-Leak-Detection-Tools
View on GitHub
六大云存储，泄露利用检测工具
☆1,253Mar 28, 2025Updated last year
ZhuriLab / Yi
View on GitHub
项目监控工具以及 Codeql 自动运行
☆314Apr 13, 2023Updated 3 years ago
Managed Kubernetes at scale on DigitalOcean • Ad
DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
PhrozenIO / SharpShellPipe
View on GitHub
This lightweight C# demo application showcases interactive remote shell access via named pipes and the SMB protocol.
☆122Feb 21, 2025Updated last year
Aur0ra-m / APIKiller
View on GitHub
API Security DAST & Oprations
☆319Jul 5, 2023Updated 2 years ago
HackingLZ / TomcatBackdoorPoC
View on GitHub
Tomcat backdoor based on CS blog
☆29Jun 30, 2023Updated 2 years ago
JDArmy / DCSec
View on GitHub
域控安全one for all
☆739Sep 9, 2024Updated last year
hosch3n / msmap
View on GitHub
Msmap is a Memory WebShell Generator.
☆585Apr 22, 2023Updated 3 years ago
novysodope / AMF_JRMP
View on GitHub
改造一个基于jrmp的AMF反序列化利用工具
☆16Jul 7, 2022Updated 3 years ago
hudangwei / codemillx
View on GitHub
codemillx is a tool for CodeQL, extract the comments in the code and generate codeql module. 强化Go开源项目安全检测(内含开源项目漏洞挖掘方法)
☆206Mar 19, 2022Updated 4 years ago
kyo-w / router-router
View on GitHub
Java web路由内存分析工具
☆439May 22, 2025Updated 11 months ago
Rvn0xsy / zipcreater
View on GitHub
ZipCreater主要应用于跨目录的文件上传漏洞的利用，它能够快速进行压缩包生成。
☆187Apr 6, 2022Updated 4 years ago
GPU virtual machines on DigitalOcean Gradient AI • Ad
Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
4ra1n / java-gate
View on GitHub
Java JNI HellsGate/HalosGate/TartarusGate/RecycledGate/SSN Syscall/Many Shellcode Loaders
☆197Jul 7, 2023Updated 2 years ago
YYHYlh / Apache-Dubbo-CVE-2023-23638-exp
View on GitHub
Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践
☆231Aug 8, 2023Updated 2 years ago
y1nglamore / IDOR_detect_tool
View on GitHub
一款API水平越权漏洞检测工具
☆767Jun 27, 2023Updated 2 years ago
Mr-Cyb3rgh0st / Excel-Exploit
View on GitHub
MacroExploit use in excel sheet
☆20Jun 12, 2023Updated 2 years ago
phith0n / zkar
View on GitHub
ZKar is a Java serialization protocol analysis tool implement in Go.
☆652Apr 19, 2026Updated last week
zhaoyumi / WeaverExploit_All
View on GitHub
泛微最近的漏洞利用工具（PS：2023）
☆480Dec 14, 2023Updated 2 years ago
lele8 / SharpDBeaver
View on GitHub
DBeaver数据库密码解密工具
☆199Nov 29, 2023Updated 2 years ago