Find cloud assets that no one wants exposed π βοΈ
β347Jul 20, 2020Updated 5 years ago
Alternatives and similar repositories for smogcloud
Users that are interested in smogcloud are comparing it to the libraries listed below
Sorting:
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.β1,012Mar 11, 2026Updated last week
- Search exposed EBS volumes for secretsβ302Apr 24, 2023Updated 2 years ago
- Awesome cloud enumeratorβ1,107Mar 9, 2025Updated last year
- FestIn - Open S3 Bucket Scannerβ230Dec 4, 2020Updated 5 years ago
- Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.β646Nov 21, 2019Updated 6 years ago
- goverview - Get an overview of the list of URLsβ142Dec 5, 2025Updated 3 months ago
- A graph-based tool for visualizing effective access and resource relationships in AWS environments.β999Oct 4, 2022Updated 3 years ago
- Bugbounty scope toolβ332Mar 5, 2025Updated last year
- The Swiss Army knife for automated Web Application Testingβ2,324May 8, 2024Updated last year
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.β303Feb 12, 2023Updated 3 years ago
- RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilitiesβ447Sep 7, 2022Updated 3 years ago
- Convolutional neural network for analyzing pentest screenshotsβ1,279Mar 8, 2026Updated 2 weeks ago
- Automating situational awareness for cloud penetration tests.β2,309Mar 10, 2026Updated last week
- A tool for quickly evaluating IAM permissions in AWS.β1,544Aug 2, 2024Updated last year
- Salesforce Policy Deviation Checkerβ30Sep 30, 2020Updated 5 years ago
- β576Jul 12, 2025Updated 8 months ago
- π Enumerate git repository URL from list of URL / User / Org. Friendly to pipelineβ56Nov 24, 2024Updated last year
- Simple python script to check against hypothetical JWT vulnerability.β51Nov 29, 2020Updated 5 years ago
- π Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.β426Feb 20, 2026Updated last month
- Automated Attack Simulation in the Cloud, complete with detection use cases.β608Nov 28, 2024Updated last year
- A tool to hunt for credentials in github wild AKA git*huntβ298Dec 8, 2022Updated 3 years ago
- Scan for misconfigured S3 buckets across S3-compatible APIs!β3,022Dec 11, 2025Updated 3 months ago
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, fβ¦β4,363Sep 30, 2024Updated last year
- A tool to parse, deduplicate, and query multiple port scans.β57Aug 11, 2023Updated 2 years ago
- The format of various s3 buckets is convert in one format. for bugbounty and security testing.β87May 6, 2023Updated 2 years ago
- Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)β135Jan 15, 2020Updated 6 years ago
- A tool for standing up (and tearing down!) purposefully insecure cloud infrastructureβ758Oct 14, 2023Updated 2 years ago
- Weaponizing Live CT logs for automated monitoring ofΒ assetsβ133Sep 12, 2021Updated 4 years ago
- MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filteringβ¦β1,600Updated this week
- a parser + crawler for .DS_Store files exposed publicallyβ56Jun 6, 2023Updated 2 years ago
- β126Sep 2, 2019Updated 6 years ago
- Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures tβ¦β213Mar 31, 2020Updated 5 years ago
- A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams/Lark/Telegram & Pushover supportβ302Nov 20, 2025Updated 4 months ago
- OWASP Domain Protect - prevent subdomain takeoverβ397Dec 23, 2024Updated last year
- A utility to convert your AWS CLI credentials into AWS console access.β257May 7, 2020Updated 5 years ago
- Azure Red Team tool for graphing Azure and Azure Active Directory objectsβ1,689Jan 8, 2024Updated 2 years ago
- Electron based screenshot scannerβ68Feb 4, 2023Updated 3 years ago
- Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.β1,167Dec 8, 2022Updated 3 years ago
- Fast GitHub recon tool. Scans for leaked secrets across all of GitHub, not just known repos and orgs. Support for GitHub dorks.β1,410Feb 10, 2026Updated last month