BishopFox / cloudfoxLinks
Automating situational awareness for cloud penetration tests.
☆2,260Updated last week
Alternatives and similar repositories for cloudfox
Users that are interested in cloudfox are comparing it to the libraries listed below
Sorting:
- Granular, Actionable Adversary Emulation for the Cloud☆2,216Updated 2 weeks ago
- AWSGoat : A Damn Vulnerable AWS Infrastructure☆1,950Updated 7 months ago
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆5,012Updated last month
- Awesome cloud enumerator☆1,071Updated 9 months ago
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆989Updated last week
- My cheatsheet notes to pentest AWS infrastructure☆699Updated 3 years ago
- CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool☆3,423Updated last month
- A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.☆2,174Updated last year
- Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.☆1,977Updated 5 months ago
- A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure☆741Updated 2 years ago
- This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage clou…☆2,775Updated last year
- An encyclopedia for offensive and defensive security knowledge in cloud native technologies.☆2,444Updated last week
- Identify privilege escalation paths within and across different clouds☆707Updated last week
- ☆714Updated this week
- Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.☆535Updated 3 months ago
- Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.☆1,798Updated 2 months ago
- Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.☆1,286Updated 4 months ago
- Offensive security drives defensive security. We're sharing a collection of SaaS attack techniques to help defenders understand the threa…☆1,397Updated 6 months ago
- A tool for quickly evaluating IAM permissions in AWS.☆1,534Updated last year
- Enumerate the permissions associated with AWS credential set☆1,211Updated last year
- Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)☆1,432Updated last week
- A graph-based tool for visualizing effective access and resource relationships in AWS environments.☆988Updated 3 years ago
- GitHub Actions Pipeline Enumeration and Attack Tool☆722Updated 3 months ago
- Create your own vulnerable by design AWS penetration testing playground☆410Updated 4 months ago
- Cloud Security Posture Management (CSPM)☆3,670Updated 3 weeks ago
- dnsReaper - subdomain takeover tool for attackers, bug bounty hunters and the blue team!☆2,183Updated 2 months ago
- Peirates - Kubernetes Penetration Testing tool☆1,400Updated 4 months ago
- Tool for building Kubernetes attack paths☆929Updated last month
- Automated pentest reporting with custom templates, project tracking, customer dashboard and client management tools. Streamline your secu…☆1,056Updated 3 weeks ago
- Vulnerable REST API with OWASP top 10 vulnerabilities for security testing☆1,152Updated last year