Alternatives and similar repositories for smogcloud:

Users that are interested in smogcloud are comparing it to the libraries listed below

• koenrh / s3enum
  Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.
  ☆247Updated 2 weeks ago
• BishopFox / dufflebag
  Search exposed EBS volumes for secrets
  ☆297Updated 2 years ago
• josehelps / git-wild-hunt
  A tool to hunt for credentials in github wild AKA git*hunt
  ☆294Updated 2 years ago
• RhinoSecurityLabs / Cloud-Security-Research
  Cloud-related research releases from the Rhino Security Labs team.
  ☆386Updated 5 years ago
• RhinoSecurityLabs / GCPBucketBrute
  A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.
  ☆517Updated last year
• appsecco / attacking-cloudgoat2
  A step-by-step walkthrough of CloudGoat 2.0 scenarios.
  ☆134Updated 5 years ago
• NotSoSecure / cloud-service-enum
  ☆248Updated 10 months ago
• cr0hn / festin
  FestIn - Open S3 Bucket Scanner
  ☆234Updated 4 years ago
• PortSwigger / autowasp
  BurpSuite Extension: A one-stop pen testing checklist and logger tool
  ☆266Updated 2 years ago
• lc / secretz
  secretz, minimizing the large attack surface of Travis CI
  ☆326Updated 2 years ago
• brianwarehime / inSp3ctor
  AWS S3 Bucket/Object Finder
  ☆119Updated 3 years ago
• dxa4481 / truffleHogRegexes
  These are the regexes that power truffleHog
  ☆218Updated 2 years ago
• riskprofiler / CloudFrontier
  Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Clo…
  ☆124Updated last year
• DigeeX / raider
  DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider
  ☆139Updated 3 years ago
• 0xSearches / sandcastle
  🏰 A Python script for AWS S3 bucket enumeration.
  ☆142Updated 2 years ago
• N0MoreSecr3ts / wraith
  Uncover forgotten secrets and bring them back to life, haunting security and operations teams.
  ☆207Updated 2 years ago
• ameenmaali / qsfuzz
  qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
  ☆301Updated 2 years ago
• allyomalley / dnsobserver
  A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…
  ☆191Updated 4 years ago
• WeAreCloudar / s3-account-search
  S3 Account Search
  ☆4Updated 6 months ago
• root4loot / rescope
  Bugbounty scope tool
  ☆328Updated 2 months ago
• Santandersecurityresearch / corsair_scan
  Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).
  ☆123Updated 2 years ago
• Shivangx01b / CorsMe
  Cross Origin Resource Sharing MisConfiguration Scanner
  ☆173Updated 3 years ago
• Static-Flow / gofingerprint
  GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…
  ☆205Updated last year
• iknowjason / AriaCloud
  A Docker container for remote penetration testing.
  ☆135Updated 4 years ago
• tomdev / teh_s3_bucketeers
  ☆275Updated 3 years ago
• devanshbatham / CertEagle
  Weaponizing Live CT logs for automated monitoring of assets
  ☆133Updated 3 years ago
• RossGeerlings / webstor
  WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted se…
  ☆157Updated last year
• nielsing / yar
  Yar is a tool for plunderin' organizations, users and/or repositories.
  ☆238Updated 4 years ago
• disruptops / cred_scanner
  A simple file-based scanner to look for potential AWS access and secret keys in files
  ☆91Updated last year
• grines / scour
  ☆126Updated 9 months ago