DataDog/undocumented-aws-api-hunter

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/DataDog/undocumented-aws-api-hunter)

DataDog / undocumented-aws-api-hunter

A tool to uncover undocumented APIs from the AWS Console.

☆116

Alternatives and similar repositories for undocumented-aws-api-hunter

Users that are interested in undocumented-aws-api-hunter are comparing it to the libraries listed below

Sorting:

tenable / hidden-services-revealer
View on GitHub
☆40Aug 2, 2024Updated last year
StevenSmiley / aws-mine
View on GitHub
AWS honey token manager
☆89Aug 1, 2024Updated last year
offensive-actions / azure-storage-reverse-shell
View on GitHub
This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
☆39Sep 25, 2024Updated last year
nodyhub / zipslipper
View on GitHub
Create tar/zip archives that try to exploit zipslip vulnerability.
☆48Sep 20, 2024Updated last year
ReversecLabs / cloud-security-vm
View on GitHub
Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments
☆142Jan 2, 2025Updated last year
latiotech / github-actions-log-checker
View on GitHub
Used to check Github actions logs for secrets - specifically tj-actions and reviewdog
☆22Mar 18, 2025Updated 11 months ago
cloud-copilot / iam-simulate
View on GitHub
An IAM Simulator that outputs detailed explains of how a request was evaluated.
☆98Updated this week
plerionhq / conditional-love
View on GitHub
An AWS metadata enumeration tool by Plerion
☆101Feb 12, 2024Updated 2 years ago
SecurityRunners / cloud-exposure-catalog
View on GitHub
A catalog of services that can be publicly exposed within different cloud providers.
☆14Aug 30, 2024Updated last year
RITRedteam / StreetCred
View on GitHub
Tool created for Red Team to test default credentials on SSH and WinRM and then execute scripts with those credentials before the passwor…
☆40May 7, 2023Updated 2 years ago
adanalvarez / TrailDiscover
View on GitHub
An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…
☆174Feb 22, 2026Updated last week
yanilov / control-tags
View on GitHub
Scalable integrity framework for ABAC on AWS
☆56Mar 14, 2025Updated 11 months ago
DuneGroup / ice-axe
View on GitHub
☆23Sep 20, 2024Updated last year
Resourcely-Inc / cloud-guardrails
View on GitHub
Open-source best practices for protecting a secure, sensible cloud platform
☆129Oct 25, 2024Updated last year
primeharbor / sensitive_iam_actions
View on GitHub
Crowdsourced list of sensitive IAM Actions
☆159Oct 29, 2024Updated last year
saw-your-packet / CloudShovel
View on GitHub
A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…
☆113Nov 13, 2024Updated last year
bullfrogsec / bullfrog
View on GitHub
Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
☆117Updated this week
ekristen / libnuke
View on GitHub
Common Golang Packages for use by the Various Cloud Nuke Tools
☆55Feb 11, 2026Updated 2 weeks ago
arphanetx / Monocle
View on GitHub
Tooling backed by an LLM for performing natural language searches against compiled target binaries. Search for encryption code, password …
☆165Apr 10, 2024Updated last year
dwillowtree / diana
View on GitHub
Save toil in security operations with: Detection & Intelligence Analysis for New Alerts (D.I.A.N.A. )
☆225Sep 4, 2024Updated last year
SecurityRunners / CloudCommotion
View on GitHub
Cloud Commotion intends to cause chaos to simulate security incidents
☆145Jun 18, 2024Updated last year
huntresslabs / rogueapps
View on GitHub
When good OAuth apps go rogue. Documents observed OAuth application tradecraft
☆84Jan 30, 2026Updated last month
NHAS / egressinator
View on GitHub
Find what egress ports are allowed
☆46Nov 19, 2025Updated 3 months ago
vectra-ai-research / Halberd
View on GitHub
Halberd : Multi-Cloud Agentic Attack Tool
☆334Jan 12, 2026Updated last month
tldrsec / awesome-secure-defaults
View on GitHub
Awesome secure by default libraries to help you eliminate bug classes!
☆700Dec 6, 2025Updated 2 months ago
Aqua-Nautilus / TrailShark
View on GitHub
☆53Oct 27, 2024Updated last year
adanalvarez / HoneyTrail
View on GitHub
Independently deploy customized honeyservices in AWS to trigger alerts on unauthorized access. It utilizes a dedicated CloudTrail for pre…
☆51Nov 16, 2024Updated last year
DataDog / grimoire
View on GitHub
Generate datasets of cloud audit logs for common attacks
☆233Feb 13, 2026Updated 2 weeks ago
duckysmacky / databoxer
View on GitHub
Fast and easy to use CLI-based file encryption program 📦
☆13Oct 12, 2025Updated 4 months ago
silascutler / dockerhoneypot-logs
View on GitHub
Collection of Docker honeypot logs from 2021 - 2024
☆36Sep 30, 2024Updated last year
messypoutine / gravy-overflow
View on GitHub
A GitHub Actions Supply Chain CTF / Goat
☆27Jan 6, 2026Updated last month
orcasecurity / orca-toolbox
View on GitHub
☆124May 26, 2025Updated 9 months ago
Frichetten / aws-api-models
View on GitHub
A collection of documented and undocumented AWS API models
☆53Nov 21, 2025Updated 3 months ago
NetSPI / gcpwn
View on GitHub
Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…
☆287May 16, 2025Updated 9 months ago
redr0nin / bloudstrike
View on GitHub
Linux CS bypass technique
☆32Feb 4, 2025Updated last year
hotnops / apeman
View on GitHub
AWS Attack Path Management Tool - Walking on the Moon
☆261Dec 5, 2024Updated last year
runreveal / sigmalite
View on GitHub
☆52Dec 13, 2025Updated 2 months ago
dievus / AWeSomeUserFinder
View on GitHub
AWS IAM Username Enumerator and Password Spraying Tool in Python3
☆89Dec 7, 2025Updated 2 months ago
w1th4d / JarPlant
View on GitHub
Java archive implant toolkit.
☆61Apr 20, 2025Updated 10 months ago