JOSHUAJEBARAJ / GCP-GOAT
GCP GOAT is the vulnerable application for learn the GCP Security
☆64Updated last year
Alternatives and similar repositories for GCP-GOAT:
Users that are interested in GCP-GOAT are comparing it to the libraries listed below
- A tool to keep AWS pentests and red teams efficient, organized, and stealthy.☆90Updated last year
- ☆33Updated 3 months ago
- Blogpost series showcasing interesting cloud - web app security bugs☆47Updated last year
- Resources to learn cloud environment and pentesting the same, contains AWS, Azure, Google Cloud☆52Updated 3 years ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated last year
- Determine privileges from cloud credentials via brute-force testing.☆67Updated 6 months ago
- Virtual Security Operations Center☆50Updated last year
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆134Updated 4 years ago
- A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities☆26Updated 8 months ago
- Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.☆165Updated 4 months ago
- Jenkins Security Research☆11Updated 3 months ago
- ☆58Updated last year
- ☆90Updated 3 years ago
- ☆134Updated last year
- Enumerate AWS permissions and resources.☆67Updated 2 years ago
- Contains all my research and content produced regarding the log4shell vulnerability☆31Updated 3 years ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆40Updated last year
- Offensive Kubernetes Threat Matrix -- kubenomicon.com☆38Updated 2 months ago
- GCP cloud security CTF☆44Updated last year
- HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…☆39Updated 2 years ago
- ☆55Updated last year
- ☆110Updated last year
- 📚A curated list of product security resources.☆19Updated 2 years ago
- Tools and blogs I use to perform GCP red teams☆107Updated 7 months ago
- Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters☆14Updated 4 years ago
- A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services …☆49Updated 2 years ago
- Holds the public Hacking the Cloud CTFs.☆55Updated last year
- ☆170Updated last year
- ☆43Updated 9 months ago
- A public cloud security knowledgebase - https://www.secwiki.cloud/☆51Updated 4 months ago