BishopFox / cloudfoxLinks
Automating situational awareness for cloud penetration tests.
☆2,270Updated this week
Alternatives and similar repositories for cloudfox
Users that are interested in cloudfox are comparing it to the libraries listed below
Sorting:
- Granular, Actionable Adversary Emulation for the Cloud☆2,223Updated last week
- AWSGoat : A Damn Vulnerable AWS Infrastructure☆1,961Updated 8 months ago
- Awesome cloud enumerator☆1,085Updated 10 months ago
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆990Updated 3 weeks ago
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆5,030Updated 2 months ago
- My cheatsheet notes to pentest AWS infrastructure☆700Updated 3 years ago
- Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.☆1,995Updated 6 months ago
- This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage clou…☆2,782Updated last year
- CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool☆3,445Updated 2 months ago
- A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure☆749Updated 2 years ago
- ☆722Updated this week
- Enumerate the permissions associated with AWS credential set☆1,214Updated last year
- Identify privilege escalation paths within and across different clouds☆711Updated last week
- Create your own vulnerable by design AWS penetration testing playground☆412Updated 2 weeks ago
- Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.☆537Updated 4 months ago
- Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)☆1,457Updated 3 weeks ago
- A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.☆2,177Updated last year
- Peirates - Kubernetes Penetration Testing tool☆1,412Updated 5 months ago
- Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.☆1,310Updated 5 months ago
- A tool for quickly evaluating IAM permissions in AWS.☆1,537Updated last year
- Cloud Security Posture Management (CSPM)☆3,685Updated last month
- 🛡️ Awesome Cloud Security Resources ⚔️☆2,339Updated last year
- An encyclopedia for offensive and defensive security knowledge in cloud native technologies.☆2,467Updated 2 weeks ago
- Offensive security drives defensive security. We're sharing a collection of SaaS attack techniques to help defenders understand the threa…☆1,400Updated 6 months ago
- Scan for misconfigured S3 buckets across S3-compatible APIs!☆2,976Updated last month
- Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.☆1,804Updated 3 months ago
- A graph-based tool for visualizing effective access and resource relationships in AWS environments.☆990Updated 3 years ago
- Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized en…☆1,215Updated 11 months ago
- Modern CLI for exploring vulnerability data with powerful search, filtering, and analysis capabilities.☆2,300Updated last week
- Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.☆645Updated 6 years ago