Alternatives and similar repositories for STARS:

Users that are interested in STARS are comparing it to the libraries listed below

• carlospolop / aws_iam_review
  ☆33Updated 3 months ago
• zer1t0 / awsenum
  Enumerate AWS permissions and resources.
  ☆67Updated 2 years ago
• AbstractClass / CloudPrivs
  Determine privileges from cloud credentials via brute-force testing.
  ☆67Updated 6 months ago
• mosesrenegade / PMapper
  A tool for quickly evaluating IAM permissions in AWS.
  ☆57Updated last year
• nightwatchcybersecurity / gitbleed_tools
  ☆90Updated 3 years ago
• synacktiv / DepFuzzer
  ☆59Updated 3 months ago
• stafordtituss / HazProne
  HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…
  ☆39Updated 2 years ago
• valeriyshevchenko90 / WhereToGo
  WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…
  ☆120Updated 2 years ago
• hac01 / gcp-iam-brute
  ☆43Updated 9 months ago
• lacioffi / GCP-pentest-lab
  A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities
  ☆26Updated 8 months ago
• Outpost24 / outpost24-cors-check
  Additional active scan checks for BURP
  ☆26Updated 5 months ago
• kh4sh3i / ElasticSearch-Pentesting
  ElasticSearch exploit and Pentesting guide for penetration tester
  ☆25Updated 2 years ago
• Macmod / goblob
  A fast enumeration tool for publicly exposed Azure Storage blobs.
  ☆86Updated last year
• spyx / ParamAngler
  ☆27Updated 2 years ago
• 0xd4y / AWSealion
  A tool to keep AWS pentests and red teams efficient, organized, and stealthy.
  ☆90Updated last year
• Sprocket-Security / cvetrends
  cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com
  ☆39Updated 2 years ago
• intrudir / burpcollaborator-docker
  A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…
  ☆29Updated 2 months ago
• EasyRecon / wappaGo
  ☆55Updated 10 months ago
• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆40Updated last year
• Neuvik / BucketHoarder
  ☆53Updated last year
• stephenbradshaw / aws_url_signer
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆58Updated last year
• JaimePolop / RExpository
  ☆74Updated 8 months ago
• HarshVaragiya / aws-redteam-kit
  A PoC to Simulate Ransomware Attack on AWS Environment
  ☆30Updated 5 months ago
• yousseflahouifi / moniorg
  moniorg is a tool that leverages crt.sh website to monitor domains of a target
  ☆47Updated last year
• BuffaloWill / whoiswatcher
  Do bulk whois lookups and get alerted on domains of interest.
  ☆33Updated 7 months ago
• WhiteOakSecurity / GoAWSConsoleSpray
  Tool to spray AWS Console IAM Logins
  ☆28Updated 2 years ago
• chryzsh / cloud-hacking-labs
  A not-curated list of cloud hacking labs
  ☆23Updated 11 months ago
• yuyudhn / AzSubEnum
  Azure Service Subdomain Enumeration
  ☆55Updated 6 months ago
• sensepost / steampipe-plugin-projectdiscovery
  A steampipe plugin to query projectdiscovery.io tools.
  ☆26Updated 7 months ago
• justmorpheus / burp-automation
  Performing automated scan using Burp Suite Pro & Vmware Burp Rest API
  ☆49Updated 2 years ago