Alternatives and similar repositories for gcpwn

Users that are interested in gcpwn are comparing it to the libraries listed below

• jstawinski / GitHub-Actions-Attack-Diagram
  ☆192Updated 9 months ago
• unknownhad / CloudIntel
  This repo contains IOC, malware and malware analysis associated with Public cloud
  ☆249Updated last year
• iknowjason / edge
  Whois for the Cloud: Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.
  ☆183Updated 4 months ago
• synacktiv / nord-stream
  Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …
  ☆314Updated 2 weeks ago
• 0xd4y / AWSealion
  A tool to keep AWS pentests and red teams efficient, organized, and stealthy.
  ☆96Updated last month
• vectra-ai-research / Halberd
  Halberd : Multi-Cloud Agentic Attack Tool
  ☆334Updated 3 weeks ago
• Littlehack3r / awesome-gcp-pentesting
  Tools and blogs I use to perform GCP red teams
  ☆136Updated last year
• boostsecurityio / lotp
  boostsecurityio/lotp
  ☆138Updated 2 weeks ago
• peass-ng / Blue-CloudPEASS
  ☆136Updated last month
• appsecco / vulnerable-mcp-servers-lab
  A collection of servers which are deliberately vulnerable to learn Pentesting MCP Servers.
  ☆218Updated last month
• VirtueSecurity / IAMhounddog
  A tool to help pentesters quickly identify privileged principals and second-order privilege escalation opportunities in unfamiliar AWS ac…
  ☆142Updated 2 months ago
• orcasecurity-research / AIGoat
  AIGoat: A deliberately Vulnerable AI Infrastructure. Learn AI security through solving our challenges.
  ☆259Updated 4 months ago
• happycakefriends / certainly
  Certainly is a offensive security toolkit to capture large amounts of traffic in various network protocols in bitflip and typosquat scena…
  ☆224Updated last year
• grahamhelton / IMDSpoof
  IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.
  ☆106Updated 2 years ago
• XMCyber / XMGoat
  ☆176Updated 2 years ago
• elastic / SWAT
  ☆169Updated 4 months ago
• CCob / okta-terrify
  Okta Verify and Okta FastPass Abuse Tool
  ☆339Updated last year
• kubenomicon / kubenomicon
  Offensive Kubernetes Threat Matrix -- kubenomicon.com
  ☆52Updated 5 months ago
• DataDog / pathfinding.cloud
  An AWS IAM Privilege Escalation Path Library
  ☆113Updated last week
• RhinoSecurityLabs / GCP-IAM-Privilege-Escalation
  A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.
  ☆410Updated 4 months ago
• grahamhelton / dredge
  Dredging up secrets from the depths of the file system
  ☆132Updated last year
• shabarkin / aws-enumerator
  The AWS Enumerator was created for service enumeration and info dumping for investigations of penetration testers during Black-Box testin…
  ☆246Updated 3 years ago
• ReversecLabs / IceKube
  ☆185Updated this week
• saw-your-packet / CloudShovel
  A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…
  ☆113Updated last year
• thisis0xczar / FrogPost
  FrogPost: postMessage Security Testing Tool
  ☆108Updated 2 months ago
• cisagov / pen-testing-findings
  A collection of Active Directory, phishing, mobile technology, system, service, web application, and wireless technology weaknesses that …
  ☆256Updated 3 years ago
• lutzenfried / OffensiveCloud
  Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)
  ☆344Updated 11 months ago
• vectra-ai-research / derf
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆101Updated 2 years ago
• DataDog / HASH
  HASH (HTTP Agnostic Software Honeypot)
  ☆141Updated last year
• Verizon / verizon_burp_extensions_ai
  Verizon Burp Extensions: AI Suite
  ☆142Updated 9 months ago