Alternatives and similar repositories for cloud-security-audit

Users that are interested in cloud-security-audit are comparing it to the libraries listed below

• lightspin-tech / red-detector
  Scan your EC2 instance to find its vulnerabilities using Vuls (https://vuls.io/en/)
  ☆89Updated 2 years ago
• prevade / cloudjack
  Route53/CloudFront Vulnerability Assessment Utility
  ☆86Updated last year
• disruptops / cred_scanner
  A simple file-based scanner to look for potential AWS access and secret keys in files
  ☆93Updated last year
• darkarnium / perimeterator
  'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.
  ☆64Updated 6 years ago
• prisma-cloud / IAMFinder
  IAMFinder enumerates and finds users and IAM roles in a target AWS account.
  ☆110Updated 4 years ago
• toniblyx / aws-forensic-tools
  Tools for AWS forensics
  ☆63Updated 9 years ago
• jordanpotti / OffensiveCloudDistribution
  Leverage the ability of Terraform and AWS or GCP to distribute large security scans across numerous cloud instances.
  ☆95Updated last year
• andresriancho / aws-audit-automation
  Tools to automate AWS Cloud security assessments
  ☆25Updated 5 years ago
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆78Updated 3 years ago
• lightspin-tech / red-shadow
  Lightspin AWS IAM Vulnerability Scanner
  ☆96Updated 4 years ago
• DenizParlak / hayat
  Hayat is a script for report and analyze Google Cloud Platform resources.
  ☆81Updated 5 years ago
• steeve85 / tfviz
  Visualize your Terraform files
  ☆34Updated 4 years ago
• wickett / lambhack
  A very vulnerable serverless application in AWS Lambda
  ☆96Updated 5 years ago
• Parasimpaticki / sandcastle
  🏰 A Python script for AWS S3 bucket enumeration.
  ☆54Updated 5 years ago
• ThreatResponse / aws_ir_plugins
  Core incident handling plugins for aws_ir cli, incident pony, and more.
  ☆21Updated 7 years ago
• nccgroup / ConMachi
  Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container
  ☆106Updated 6 years ago
• RhinoSecurityLabs / Presentations
  A collection of slides, videos, and proof-of-concept scripts from various Rhino presentations.
  ☆38Updated 7 years ago
• offensive-terraform / offensive-terraform.github.io
  Offensive Terraform Website
  ☆45Updated 4 years ago
• appsecco / kubeseco
  Application Security Workflow Automation using Docker and Kubernetes
  ☆22Updated 2 years ago
• goldfiglabs / sgCheckup
  sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.
  ☆82Updated 3 years ago
• PaperMtn / github-watchman
  Monitoring GitHub for sensitive data shared publicly
  ☆66Updated 3 years ago
• torque59 / AWS-Vulnerable-Lambda
  An AWS Lambda vulnerable application written in flask.
  ☆49Updated 7 years ago
• faloker / purify
  All-in-one tool for managing vulnerability reports from AppSec pipelines
  ☆108Updated 2 years ago
• nccgroup / go-pillage-registries
  Pentester-focused Docker registry tool to enumerate and pull images
  ☆111Updated 5 years ago
• DolosGroup / Jenkins-Pillage
  A tool for automatically gathering sensitive information from exposed Jenkins servers
  ☆104Updated 2 years ago
• opendevsecops / terraform-aws-scanner
  Terraform module which provides easy to configure AWS environment for running automated security scanning solutions at scheduled interval…
  ☆46Updated 6 years ago
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 3 years ago
• Frichetten / aws_stealth_perm_enum
  Research on the enumeration of IAM permissions without logging to CloudTrail
  ☆61Updated 4 years ago
• HBOCodeLabs / gimme-aws-creds
  A CLI that utilizes Okta IdP via SAML to acquire temporary AWS credentials
  ☆10Updated 4 years ago
• Prevenity / Cloud-Security
  GCP and GSUITE security auditing scripts
  ☆27Updated last year