DataDog / stratus-red-team

Related projects ⓘ

Alternatives and complementary repositories for stratus-red-team

• BishopFox / cloudfox
  Automating situational awareness for cloud penetration tests.
  ☆1,930Updated 3 weeks ago
• Hacking-the-Cloud / hackingthe.cloud
  An encyclopedia for offensive and defensive security knowledge in cloud native technologies.
  ☆1,706Updated this week
• RhinoSecurityLabs / cloudgoat
  CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
  ☆2,966Updated this week
• RhinoSecurityLabs / pacu
  The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
  ☆4,377Updated last month
• austinsonger / Incident-Playbook
  GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]
  ☆1,403Updated 3 months ago
• nccgroup / sadcloud
  A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure
  ☆656Updated last year
• aquasecurity / cloudsploit
  Cloud Security Posture Management (CSPM)
  ☆3,347Updated last month
• SummitRoute / csp_security_mistakes
  This repo has been replaced by https://www.cloudvulndb.org
  ☆718Updated 2 years ago
• ine-labs / AWSGoat
  AWSGoat : A Damn Vulnerable AWS Infrastructure
  ☆1,732Updated last week
• 4ndersonLin / awesome-cloud-security
  🛡️ Awesome Cloud Security Resources ⚔️
  ☆2,075Updated 5 months ago
• elastic / detection-rules
  ☆1,959Updated this week
• SecurityRiskAdvisors / VECTR
  VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities a…
  ☆1,388Updated last month
• cyberark / kubesploit
  Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized en…
  ☆1,124Updated 3 months ago
• splunk / attack_range
  A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data int…
  ☆2,135Updated this week
• infosecB / awesome-detection-engineering
  Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation o…
  ☆835Updated last month
• center-for-threat-informed-defense / adversary_emulation_library
  An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.
  ☆1,719Updated 10 months ago
• DataDog / KubeHound
  Tool for building Kubernetes attack paths
  ☆772Updated 2 weeks ago
• inguardians / peirates
  Peirates - Kubernetes Penetration Testing tool
  ☆1,240Updated 3 weeks ago
• jonrau1 / ElectricEye
  ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring su…
  ☆936Updated this week
• aquasecurity / cloud-security-remediation-guides
  Security Remediation Guides
  ☆708Updated 3 weeks ago
• krol3 / container-security-checklist
  Checklist for container security - devsecops practices
  ☆1,520Updated last year
• rootsecdev / Azure-Red-Team
  Azure Security Resources and Notes
  ☆1,479Updated 4 months ago
• iknowjason / Awesome-CloudSec-Labs
  Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.
  ☆1,426Updated last week
• ovotech / gitoops
  all paths lead to clouds
  ☆632Updated last year
• zeronetworks / BlueHound
  BlueHound - pinpoint the security issues that actually matter
  ☆712Updated last year
• cisagov / RedEye
  RedEye is a visual analytic tool supporting Red & Blue Team operations
  ☆2,662Updated last year
• rabobank-cdc / DeTTECT
  Detect Tactics, Techniques & Combat Threats
  ☆2,062Updated this week
• BishopFox / iam-vulnerable
  Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
  ☆476Updated 9 months ago
• mitre-attack / attack-navigator
  Web app that provides basic navigation and annotation of ATT&CK matrices
  ☆1,999Updated last week