JOSHUAJEBARAJ / GCP-GOAT
GCP GOAT is the vulnerable application for learn the GCP Security
☆63Updated last year
Alternatives and similar repositories for GCP-GOAT:
Users that are interested in GCP-GOAT are comparing it to the libraries listed below
- ☆33Updated 2 months ago
- A tool to keep AWS pentests and red teams efficient, organized, and stealthy.☆90Updated last year
- Blogpost series showcasing interesting cloud - web app security bugs☆47Updated last year
- ☆133Updated last year
- ☆58Updated last year
- GCP cloud security CTF☆44Updated last year
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆134Updated 4 years ago
- Enumerate AWS permissions and resources.☆67Updated 2 years ago
- Resources to learn cloud environment and pentesting the same, contains AWS, Azure, Google Cloud☆52Updated 3 years ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated last year
- Determine privileges from cloud credentials via brute-force testing.☆67Updated 6 months ago
- HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…☆39Updated 2 years ago
- This script is a multi-threaded Okta password sprayer.☆70Updated last year
- Tools and blogs I use to perform GCP red teams☆107Updated 7 months ago
- This repository hosts several snippets and file related to the BsidesLV 2024 talk about Shadow and Zombie APIs by me☆17Updated 7 months ago
- A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities☆26Updated 7 months ago
- Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.☆165Updated 4 months ago
- Virtual Security Operations Center☆50Updated last year
- ☆55Updated last year
- ☆90Updated 3 years ago
- LLM Testing Findings Templates☆68Updated last year
- ☆42Updated 9 months ago
- ☆110Updated last year
- ☆41Updated 2 weeks ago
- Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters☆14Updated 4 years ago
- A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation☆103Updated last year
- Scripts and misc. stuff related to the PortSwigger Web Academy☆17Updated 3 years ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆40Updated last year
- InfoSec OpenAI Examples☆19Updated last year
- A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services …☆49Updated last year