BishopFox / cloudfoxLinks
Automating situational awareness for cloud penetration tests.
☆2,219Updated last week
Alternatives and similar repositories for cloudfox
Users that are interested in cloudfox are comparing it to the libraries listed below
Sorting:
- Granular, Actionable Adversary Emulation for the Cloud☆2,173Updated 3 weeks ago
- Awesome cloud enumerator☆1,051Updated 7 months ago
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆4,942Updated 2 months ago
- AWSGoat : A Damn Vulnerable AWS Infrastructure☆1,926Updated 5 months ago
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆980Updated this week
- My cheatsheet notes to pentest AWS infrastructure☆691Updated 3 years ago
- Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.☆1,943Updated 3 months ago
- Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.☆1,254Updated 2 months ago
- This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage clou…☆2,758Updated last year
- Identify privilege escalation paths within and across different clouds☆705Updated last month
- An encyclopedia for offensive and defensive security knowledge in cloud native technologies.☆2,227Updated 2 weeks ago
- CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool☆3,354Updated last month
- Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)☆1,396Updated 8 months ago
- A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure☆731Updated 2 years ago
- Offensive security drives defensive security. We're sharing a collection of SaaS attack techniques to help defenders understand the threa…☆1,383Updated 3 months ago
- A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.☆2,153Updated last year
- Peirates - Kubernetes Penetration Testing tool☆1,363Updated 2 months ago
- Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.☆520Updated last month
- Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.☆1,761Updated 3 weeks ago
- ☆703Updated this week
- Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized en…☆1,201Updated 8 months ago
- Create your own vulnerable by design AWS penetration testing playground☆398Updated last month
- GitHub Actions Pipeline Enumeration and Attack Tool☆709Updated last month
- Enumerate the permissions associated with AWS credential set☆1,191Updated last year
- Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.☆724Updated last month
- Scan for misconfigured S3 buckets across S3-compatible APIs!☆2,943Updated last week
- A graph-based tool for visualizing effective access and resource relationships in AWS environments.☆978Updated 3 years ago
- ☆573Updated 2 years ago
- Tool for building Kubernetes attack paths☆915Updated 2 weeks ago
- Azure Security Resources and Notes☆1,612Updated 3 months ago