Alternatives and similar repositories for STARS:

Users that are interested in STARS are comparing it to the libraries listed below

• AbstractClass / CloudPrivs
  Determine privileges from cloud credentials via brute-force testing.
  ☆67Updated 8 months ago
• MorDavid / ExternalAttacker-MCP
  A modular external attack surface mapping tool integrating tools for automated reconnaissance and bug bounty workflows.
  ☆34Updated 3 weeks ago
• JaimePolop / RExpository
  ☆75Updated 9 months ago
• carlospolop / aws_iam_review
  ☆35Updated last month
• mosesrenegade / PMapper
  A tool for quickly evaluating IAM permissions in AWS.
  ☆57Updated last year
• zer1t0 / awsenum
  Enumerate AWS permissions and resources.
  ☆68Updated 2 years ago
• GONZOsint / trufflehog-explorer
  TruffleHog Explorer, a user-friendly web-based tool to visualize and analyze data extracted using TruffleHog.
  ☆36Updated 3 months ago
• mrrootsec / AssetViz
  AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration test…
  ☆32Updated last year
• sensepost / steampipe-plugin-projectdiscovery
  A steampipe plugin to query projectdiscovery.io tools.
  ☆26Updated 9 months ago
• stafordtituss / HazProne
  HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…
  ☆39Updated 2 years ago
• saw-your-packet / EC2StepShell
  EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.
  ☆64Updated 7 months ago
• Sprocket-Security / fireproxng
  Next generation fireprox AWS API endpoint creation utility.
  ☆52Updated 2 years ago
• hac01 / gcp-iam-brute
  ☆47Updated 10 months ago
• Macmod / goblob
  A fast enumeration tool for publicly exposed Azure Storage blobs.
  ☆93Updated 2 years ago
• edermi / skweez
  Fast website scraper and wordlist generator
  ☆77Updated 2 years ago
• chryzsh / cloud-hacking-labs
  A not-curated list of cloud hacking labs
  ☆25Updated last year
• Sprocket-Security / cvetrends
  cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com
  ☆39Updated 2 years ago
• valeriyshevchenko90 / WhereToGo
  WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…
  ☆122Updated 2 years ago
• anrbn / GATOR
  GATOR - GCP Attack Toolkit for Offensive Research, a tool designed to aid in research and exploiting Google Cloud Environments
  ☆90Updated 10 months ago
• Neuvik / BucketHoarder
  ☆55Updated last year
• trickest / elasticsearch_index
  Manage attack surface data on Elasticsearch
  ☆22Updated last year
• yousseflahouifi / moniorg
  moniorg is a tool that leverages crt.sh website to monitor domains of a target
  ☆47Updated 2 years ago
• 0xd4y / AWSealion
  A tool to keep AWS pentests and red teams efficient, organized, and stealthy.
  ☆91Updated last year
• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆41Updated last year
• trickest / recon-and-vulnerability-scanner-template
  Create your own recon & vulnerability scanner with Trickest and GitHub
  ☆49Updated last year
• stephenbradshaw / aws_url_signer
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆58Updated last year
• Slayer0x / Cloud-Detective
  Cloud subdomains identification tool
  ☆58Updated 2 weeks ago
• kh4sh3i / ElasticSearch-Pentesting
  ElasticSearch exploit and Pentesting guide for penetration tester
  ☆27Updated 2 years ago
• nightwatchcybersecurity / gitbleed_tools
  ☆90Updated 3 years ago
• MantisSTS / GoCloud
  Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare
  ☆59Updated 2 years ago