AbstractClass/CloudPrivs external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

AbstractClass/CloudPrivs

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/AbstractClass/CloudPrivs)

Close

AbstractClass / CloudPrivsView on GitHubMore

• External links
• Readme badge

Determine privileges from cloud credentials via brute-force testing.

☆69Aug 22, 2024Updated last year

Alternatives and similar repositories for CloudPrivs

Users that are interested in CloudPrivs are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• 0xthirteen / PerfExec

  View on GitHub
  ☆79Aug 2, 2023Updated 2 years ago
• ThunderGunExpress / ThunderMSI

  View on GitHub
  ☆28Dec 28, 2017Updated 8 years ago
• safebuffer / redblock

  View on GitHub
  RedBlock is an Nginx module designed for offensive security operations and red teaming. This module empowers security professionals to ea…
  ☆24Jan 21, 2024Updated 2 years ago
• hakaioffsec / gcp_enum

  View on GitHub
  A Python script to authenticate and test access to Google Cloud Platform (GCP) resources.
  ☆17Jan 31, 2024Updated 2 years ago
• shlyuz / implant_go

  View on GitHub
  Golang Shlyuz Implant Implementation
  ☆13May 23, 2025Updated 11 months ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• EspressoCake / Toggle_Token_Privileges_BOF

  View on GitHub
  Syscall BOF to arbitrarily add/detract process token privilege rights.
  ☆67Jul 10, 2024Updated last year
• OG-Sadpanda / SharpCat

  View on GitHub
  C# alternative to the linux "cat" command... Prints file contents to console. For use with Cobalt Strike's Execute-Assembly
  ☆15Jul 15, 2021Updated 4 years ago
• leonjza / tc2

  View on GitHub
  treafik fronted c2 examples
  ☆25Dec 6, 2020Updated 5 years ago
• Octoberfest7 / JumpSession_BOF

  View on GitHub
  Beacon Object File allowing creation of Beacons in different sessions.
  ☆84May 23, 2022Updated 3 years ago
• Static-Flow / CloudCopy

  View on GitHub
  This tool implements a cloud version of the Shadow Copy attack against domain controllers running in AWS using only the EC2:CreateSnapsho…
  ☆123Nov 2, 2019Updated 6 years ago
• xenoscr / SharpMailBOF

  View on GitHub
  A BOF.NET program to split a file into smaller chunks and email it via a specified SMTP relay.
  ☆15Jun 24, 2021Updated 4 years ago
• stephenbradshaw / aws_url_signer

  View on GitHub
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆59Sep 20, 2023Updated 2 years ago
• Und3rf10w / CobaltStrikeBOFs

  View on GitHub
  Beacon Object Files used for Cobalt Strike
  ☆19Jul 18, 2023Updated 2 years ago
• doyensec / oidc-ssrf

  View on GitHub
  An Evil OIDC Server
  ☆53Oct 19, 2022Updated 3 years ago
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• securfreakazoid / autoPhisher

  View on GitHub
  Script to setup a phishing server on the cloud
  ☆13Apr 30, 2021Updated 4 years ago
• 404tk / cloudtoolkit

  View on GitHub
  Authorized cloud adversary simulation and validation toolkit
  ☆107Updated this week
• doyensec / cloudsec-tidbits

  View on GitHub
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆49Jun 13, 2023Updated 2 years ago
• optiv / KnockKnock

  View on GitHub
  Enumerate valid users within Microsoft Teams and OneDrive with clean output.
  ☆61Feb 4, 2025Updated last year
• sean-t-smith / Efficient_Corporate_Masks

  View on GitHub
  A set of hashcat hcmask files, prioritized by cracking efficiency... and the hcmask_Generator_9000.xlsx tool.
  ☆26Dec 17, 2023Updated 2 years ago
• Macmod / goblob

  View on GitHub
  A fast enumeration tool for publicly exposed Azure Storage blobs.
  ☆118Mar 25, 2023Updated 3 years ago
• fastlorenzo / redelk-server

  View on GitHub
  Ansible role to deploy RedELK server
  ☆19Sep 11, 2023Updated 2 years ago
• optiv / Registry-Recon

  View on GitHub
  Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon
  ☆341Jun 6, 2022Updated 3 years ago
• carlospolop / bf-aws-perms-simulate

  View on GitHub
  ☆20Feb 9, 2024Updated 2 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• christophetd / aws-sso-device-code-authentication

  View on GitHub
  ☆38Jun 9, 2021Updated 4 years ago
• thesnoom / extps-cobalt-strike-bof

  View on GitHub
  Extended Process List (Search functionality)
  ☆29Jan 23, 2021Updated 5 years ago
• mlcsec / SharpGraphView

  View on GitHub
  Microsoft Graph API post-exploitation toolkit
  ☆95Jul 13, 2024Updated last year
• ustayready / outpost

  View on GitHub
  AWS Testing and Reporting Management Tool
  ☆20Jan 23, 2023Updated 3 years ago
• MzHmO / TGSThief

  View on GitHub
  My implementation of the GIUDA project in C++
  ☆189Jul 25, 2023Updated 2 years ago
• FuzzySecurity / WWHF-WayWest-2022

  View on GitHub
  ☆37May 8, 2022Updated 3 years ago
• bluesentinelsec / RedNimbusC2

  View on GitHub
  A serverless C2 framework
  ☆14Feb 3, 2023Updated 3 years ago
• ewby / Mockingjay_BOF

  View on GitHub
  Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique
  ☆158Nov 7, 2023Updated 2 years ago
• dsnezhkov / shutter

  View on GitHub
  ☆124May 12, 2021Updated 4 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• rkbennett / pybof

  View on GitHub
  Python module for running BOFs
  ☆80Nov 28, 2025Updated 5 months ago
• cado-security / cloudgrep

  View on GitHub
  cloudgrep is grep for cloud storage
  ☆329Mar 14, 2026Updated last month
• ChoiSG / GwisinMsi

  View on GitHub
  PoC MSI payload based on ASEC/AhnLab's blog post
  ☆24Sep 19, 2022Updated 3 years ago
• saw-your-packet / EC2StepShell

  View on GitHub
  EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.
  ☆68Sep 20, 2024Updated last year
• ustayready / ShredHound

  View on GitHub
  Small utility to chunk up a large BloodHound JSON file into smaller files for importing.
  ☆97Apr 13, 2023Updated 3 years ago
• BishopFox / CVE-2023-3519

  View on GitHub
  RCE exploit for CVE-2023-3519
  ☆228Aug 23, 2023Updated 2 years ago
• ayushpriya10 / IMDShift

  View on GitHub
  ☆55Apr 25, 2023Updated 3 years ago