Alternatives and similar repositories for smogcloud

Users that are interested in smogcloud are comparing it to the libraries listed below

• BishopFox / dufflebag
  Search exposed EBS volumes for secrets
  ☆299Updated 2 years ago
• appsecco / attacking-cloudgoat2
  A step-by-step walkthrough of CloudGoat 2.0 scenarios.
  ☆135Updated 5 years ago
• koenrh / s3enum
  Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.
  ☆254Updated last month
• cr0hn / festin
  FestIn - Open S3 Bucket Scanner
  ☆233Updated 4 years ago
• josehelps / git-wild-hunt
  A tool to hunt for credentials in github wild AKA git*hunt
  ☆297Updated 2 years ago
• dxa4481 / truffleHogRegexes
  These are the regexes that power truffleHog
  ☆219Updated 2 years ago
• RhinoSecurityLabs / Cloud-Security-Research
  Cloud-related research releases from the Rhino Security Labs team.
  ☆391Updated 5 years ago
• NotSoSecure / cloud-service-enum
  ☆258Updated last year
• opendevsecops / guide-aws-hacking
  This is an offensive guide to securing AWS infrastructures. The hope is that by knowing how to take advantage of various types of AWS wea…
  ☆172Updated 6 years ago
• RhinoSecurityLabs / GCPBucketBrute
  A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.
  ☆536Updated 2 years ago
• sudosammy / knary
  A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams/Lark/Telegram & Pushover support
  ☆299Updated last month
• riskprofiler / CloudFrontier
  Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Clo…
  ☆126Updated last year
• DigeeX / raider
  DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider
  ☆139Updated 4 years ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆181Updated 2 years ago
• MindPointGroup / cloudfrunt
  A tool for identifying misconfigured CloudFront domains
  ☆359Updated 5 years ago
• N0MoreSecr3ts / wraith
  Uncover forgotten secrets and bring them back to life, haunting security and operations teams.
  ☆208Updated 2 years ago
• AvasDream / pentesting-dockerfiles
  Pentesting/Bugbounty Dockerfiles.
  ☆177Updated 4 years ago
• brianwarehime / inSp3ctor
  AWS S3 Bucket/Object Finder
  ☆121Updated 4 years ago
• nielsing / yar
  Yar is a tool for plunderin' organizations, users and/or repositories.
  ☆238Updated 4 years ago
• iknowjason / AriaCloud
  A Docker container for remote penetration testing.
  ☆138Updated 4 years ago
• cloud-sniper / cloud-sniper
  Cloud Security Operations Orchestrator
  ☆187Updated last year
• PaperMtn / github-watchman
  Monitoring GitHub for sensitive data shared publicly
  ☆66Updated 3 years ago
• Plazmaz / leaky-repo
  Benchmarking repo for secrets scanning
  ☆237Updated last year
• detectify / ugly-duckling
  Ugly Duckling is a lightweight scanner built specifically for our Crowdsource community to submit proof-of-concept modules
  ☆188Updated 3 years ago
• disruptops / cred_scanner
  A simple file-based scanner to look for potential AWS access and secret keys in files
  ☆93Updated last year
• PaperMtn / gitlab-watchman
  Finding exposed secrets and personal data in GitLab
  ☆200Updated 9 months ago
• WeAreCloudar / s3-account-search
  S3 Account Search
  ☆18Updated last month
• softrams / bulwark
  An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
  ☆183Updated 3 weeks ago
• magoo / ato-checklist
  A checklist of practices for organizations dealing with account takeover (ATO)
  ☆273Updated 11 months ago
• tprynn / web-methodology
  Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki
  ☆212Updated 10 months ago