Alternatives and similar repositories for awesome-gcp-pentesting

Users that are interested in awesome-gcp-pentesting are comparing it to the libraries listed below

• 0xd4y / AWSealion
  A tool to keep AWS pentests and red teams efficient, organized, and stealthy.
  ☆92Updated last year
• carlospolop / aws_iam_review
  ☆35Updated 2 months ago
• iknowjason / edge
  Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.
  ☆168Updated 7 months ago
• NetSPI / gcpwn
  Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…
  ☆249Updated 2 weeks ago
• wavestone-cdt / DEFCON-CICD-pipelines-workshop
  ☆93Updated 2 years ago
• SygniaLabs / security-cloud-scout
  ☆137Updated 2 years ago
• stephenbradshaw / aws_url_signer
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆58Updated last year
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆64Updated 2 weeks ago
• facebookincubator / ForgeArmory
  ForgeArmory provides TTPs that can be used with the TTPForge (https://github.com/facebookincubator/ttpforge).
  ☆112Updated 8 months ago
• vectra-ai-research / derf
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆97Updated last year
• gladstomych / AHHHZURE
  AHHHZURE is an automated deployment script that creates a vulnerable Azure cloud lab for offensive security practitioners and enthusiasts…
  ☆104Updated last year
• XMCyber / XMGoat
  ☆174Updated 2 years ago
• LOTTunnels / LOTTunnels.github.io
  ☆99Updated last month
• mlcsec / Graphpython
  Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit
  ☆147Updated 5 months ago
• kubenomicon / kubenomicon
  Offensive Kubernetes Threat Matrix -- kubenomicon.com
  ☆39Updated 4 months ago
• joswr1ght / basicblobfinder
  Identify Azure blobs using a wordlist of account name and container name strings
  ☆43Updated 2 months ago
• Verizon / verizon_burp_extensions_ai
  Verizon Burp Extensions: AI Suite
  ☆130Updated last month
• RoseSecurity / WolfPack
  WolfPack combines the capabilities of Terraform and Packer to streamline the deployment of red team redirectors on a large scale.
  ☆148Updated 2 months ago
• The-Taggart-Institute / responsible-red-teaming
  Labs & Code snippets for RRT on TTI
  ☆40Updated 2 years ago
• LowOrbitSecurity / gubble
  gubble is a tool designed to audit Google Workspace group settings. It analyzes settings such as who can join, view membership, post mess…
  ☆55Updated last week
• synacktiv / Mindmaps
  Azure mindmap for penetration tests
  ☆185Updated last year
• 0xJs / CARTP-cheatsheet
  Azure AD cheatsheet for the CARTP course
  ☆116Updated 3 years ago
• jfmaes / aws_mini_ad
  An Infrastructure as code proof of concept to deploy a bare minimum AD environment in AWS.
  ☆37Updated 4 months ago
• zer1t0 / awsenum
  Enumerate AWS permissions and resources.
  ☆69Updated 2 years ago
• stolenusername / cowitness
  CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …
  ☆125Updated last year
• r3s-ost / 5head
  Network penetration testing toolset wrapper
  ☆81Updated 2 years ago
• LuemmelSec / Custom-BloodHound-Queries
  ☆178Updated 5 months ago
• Frichetten / SneakyEndpoints
  Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints
  ☆116Updated last year
• Slayer0x / Cloud-Detective
  Cloud subdomains identification tool
  ☆58Updated last month
• grahamhelton / dredge
  Dredging up secrets from the depths of the file system
  ☆127Updated 7 months ago