Alternatives and similar repositories for Gato-X

Users that are interested in Gato-X are comparing it to the libraries listed below

• praetorian-inc / gato

  View on GitHub
  GitHub Actions Pipeline Enumeration and Attack Tool
  ☆726Sep 17, 2025Updated 4 months ago
• AdnaneKhan / Cacheract

  View on GitHub
  GitHub Actions Cache Native Malware - for Educational and Research Purposes only.
  ☆92Jan 28, 2026Updated 2 weeks ago
• synacktiv / octoscan

  View on GitHub
  Octoscan is a static vulnerability scanner for GitHub action workflows.
  ☆243Dec 8, 2025Updated 2 months ago
• synacktiv / nord-stream

  View on GitHub
  Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …
  ☆314Jan 25, 2026Updated 3 weeks ago
• jstawinski / GitHub-Actions-Attack-Diagram

  View on GitHub
  ☆192Apr 16, 2025Updated 9 months ago
• synacktiv / gh-hijack-runner

  View on GitHub
  A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.
  ☆27Oct 13, 2024Updated last year
• BishopFox / sj

  View on GitHub
  A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
  ☆719Feb 3, 2026Updated last week
• TinderSec / gh-workflow-auditor

  View on GitHub
  Script to audit GitHub Action Workflow files for potential vulnerabilities.
  ☆153Aug 28, 2024Updated last year
• nikitastupin / pwnhub

  View on GitHub
  How GitHub Actions workflows can be hacked
  ☆176Aug 23, 2024Updated last year
• messypoutine / gravy-overflow

  View on GitHub
  A GitHub Actions Supply Chain CTF / Goat
  ☆27Jan 6, 2026Updated last month
• nullenc0de / Cognitohunter

  View on GitHub
  A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…
  ☆21Jan 20, 2025Updated last year
• boostsecurityio / lotp

  View on GitHub
  boostsecurityio/lotp
  ☆138Jan 25, 2026Updated 3 weeks ago
• fyoorer / ShadowClone

  View on GitHub
  Unleash the power of cloud
  ☆821Nov 19, 2024Updated last year
• 0xacb / recollapse

  View on GitHub
  REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications
  ☆1,287Aug 7, 2025Updated 6 months ago
• AethliosIK / reset-tolkien

  View on GitHub
  Unsecure time-based secret exploitation and Sandwich attack implementation Resources
  ☆148Dec 9, 2024Updated last year
• BishopFox / jsluice

  View on GitHub
  Extract URLs, paths, secrets, and other interesting bits from JavaScript
  ☆1,755May 22, 2024Updated last year
• AdnaneKhan / ActionsTOCTOU

  View on GitHub
  Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)
  ☆35Jan 25, 2026Updated 3 weeks ago
• DataDog / supply-chain-firewall

  View on GitHub
  Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages
  ☆215Updated this week
• AdnaneKhan / ActionsCacheBlasting

  View on GitHub
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆21Mar 9, 2025Updated 11 months ago
• BlackFan / Burp-Ai-Substitutor

  View on GitHub
  AI Substitutor is an extension for Burp Suite that uses AI functionality to substitute values of HTTP request parameters and headers.
  ☆28Apr 30, 2025Updated 9 months ago
• jtesta / k8s_spoofilizer

  View on GitHub
  Creates Kubernetes Golden Tickets through ServiceAccount token forging and user certificate forging.
  ☆51Mar 3, 2025Updated 11 months ago
• offensive-actions / azure-storage-reverse-shell

  View on GitHub
  This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
  ☆39Sep 25, 2024Updated last year
• Permiso-io-tools / SkyScalpel

  View on GitHub
  ☆46Nov 7, 2024Updated last year
• assetnote / surf

  View on GitHub
  Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …
  ☆749Dec 19, 2023Updated 2 years ago
• g0ldencybersec / gungnir

  View on GitHub
  CT Log Scanner
  ☆513Dec 26, 2025Updated last month
• BishopFox / cloudfox

  View on GitHub
  Automating situational awareness for cloud penetration tests.
  ☆2,289Feb 5, 2026Updated last week
• mtimani / Prometheus

  View on GitHub
  Recon scripts for Red Team and Web blackbox auditing
  ☆26Dec 29, 2025Updated last month
• zizmorcore / zizmor

  View on GitHub
  Static analysis for GitHub Actions
  ☆3,623Updated this week
• synacktiv / DepFuzzer

  View on GitHub
  ☆94Dec 15, 2025Updated 2 months ago
• TupleType / awesome-cicd-attacks

  View on GitHub
  Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.
  ☆570Jan 28, 2026Updated 2 weeks ago
• spaceraccoon / serverless-recon-example

  View on GitHub
  Example of a serverless web reconaissance workflow's AWS architecture.
  ☆11Feb 25, 2023Updated 2 years ago
• assetnote / newtowner

  View on GitHub
  Abuse trust-boundaries to bypass firewalls and network controls
  ☆385Jul 24, 2025Updated 6 months ago
• xforcered / ADOKit

  View on GitHub
  Azure DevOps Services Attack Toolkit
  ☆313Mar 15, 2025Updated 11 months ago
• attacksurge / ax

  View on GitHub
  The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning-On Your Terms. Easily distribute arbit…
  ☆719Dec 26, 2025Updated last month
• g0ldencybersec / CloudRecon

  View on GitHub
  ☆520Apr 29, 2024Updated last year
• dirkjanm / ROADtools

  View on GitHub
  A collection of Azure AD/Entra tools for offensive and defensive security purposes
  ☆2,515Feb 5, 2026Updated last week
• kevin-mizu / domloggerpp

  View on GitHub
  A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.
  ☆769Dec 9, 2025Updated 2 months ago
• Permiso-io-tools / cloudtail

  View on GitHub
  ☆30Jan 13, 2026Updated last month
• PaloAltoNetworks / github-oidc-utils

  View on GitHub
  ☆36Apr 29, 2025Updated 9 months ago