Alternatives and similar repositories for cloud-security-audit

Users that are interested in cloud-security-audit are comparing it to the libraries listed below

• lightspin-tech / red-detector
  Scan your EC2 instance to find its vulnerabilities using Vuls (https://vuls.io/en/)
  ☆89Updated 3 years ago
• prevade / cloudjack
  Route53/CloudFront Vulnerability Assessment Utility
  ☆87Updated 2 years ago
• darkarnium / perimeterator
  'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.
  ☆64Updated 6 years ago
• steeve85 / tfviz
  Visualize your Terraform files
  ☆34Updated 5 years ago
• disruptops / cred_scanner
  A simple file-based scanner to look for potential AWS access and secret keys in files
  ☆93Updated last year
• prisma-cloud / IAMFinder
  IAMFinder enumerates and finds users and IAM roles in a target AWS account.
  ☆111Updated 5 years ago
• toniblyx / aws-forensic-tools
  Tools for AWS forensics
  ☆65Updated 9 years ago
• andresriancho / aws-audit-automation
  Tools to automate AWS Cloud security assessments
  ☆24Updated 5 years ago
• lightspin-tech / red-shadow
  Lightspin AWS IAM Vulnerability Scanner
  ☆95Updated 4 years ago
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆78Updated 3 years ago
• DenizParlak / hayat
  Hayat is a script for report and analyze Google Cloud Platform resources.
  ☆81Updated 5 years ago
• jordanpotti / OffensiveCloudDistribution
  Leverage the ability of Terraform and AWS or GCP to distribute large security scans across numerous cloud instances.
  ☆93Updated 2 years ago
• wickett / lambhack
  A very vulnerable serverless application in AWS Lambda
  ☆97Updated 6 years ago
• Parasimpaticki / sandcastle
  🏰 A Python script for AWS S3 bucket enumeration.
  ☆54Updated 5 years ago
• Frichetten / aws_stealth_perm_enum
  Research on the enumeration of IAM permissions without logging to CloudTrail
  ☆61Updated 4 years ago
• faloker / purify
  All-in-one tool for managing vulnerability reports from AppSec pipelines
  ☆108Updated 2 years ago
• offensive-terraform / offensive-terraform.github.io
  Offensive Terraform Website
  ☆45Updated 5 years ago
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 3 years ago
• goldfiglabs / sgCheckup
  sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.
  ☆82Updated 4 years ago
• nccgroup / ConMachi
  Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container
  ☆106Updated 7 years ago
• Prevenity / Cloud-Security
  GCP and GSUITE security auditing scripts
  ☆27Updated last year
• ThreatResponse / aws_ir_plugins
  Core incident handling plugins for aws_ir cli, incident pony, and more.
  ☆21Updated 7 years ago
• PaperMtn / github-watchman
  Monitoring GitHub for sensitive data shared publicly
  ☆66Updated 3 years ago
• DolosGroup / Jenkins-Pillage
  A tool for automatically gathering sensitive information from exposed Jenkins servers
  ☆104Updated 2 years ago
• nccgroup / go-pillage-registries
  Pentester-focused Docker registry tool to enumerate and pull images
  ☆112Updated 5 years ago
• RhinoSecurityLabs / Presentations
  A collection of slides, videos, and proof-of-concept scripts from various Rhino presentations.
  ☆38Updated 7 years ago
• 3CORESec / Trapdoor
  Serverless honeytoken 🕵🏻‍♂️
  ☆81Updated 2 years ago
• disruptops / IncidentResponseGenerator
  Updated incident response generator for training classes
  ☆44Updated 4 years ago
• xmendez / awsdigger
  AWS IAM resources search tool
  ☆20Updated 4 years ago
• endgameinc / varna
  Varna: Quick & Cheap AWS CloudTrail Monitoring with Event Query Language (EQL)
  ☆52Updated 2 years ago