Alternatives and similar repositories for gcpwn:

Users that are interested in gcpwn are comparing it to the libraries listed below

• unknownhad / CloudIntel
  This repo contains IOC, malware and malware analysis associated with Public cloud
  ☆249Updated 5 months ago
• vectra-ai-research / Halberd
  Halberd : Multi-Cloud Attack Tool
  ☆272Updated 2 weeks ago
• jstawinski / GitHub-Actions-Attack-Diagram
  ☆180Updated 3 weeks ago
• elastic / SWAT
  Simple Workspace Attack Tool (SWAT) is a tool for simulating malicious behavior against Google Workspace in reference to the MITRE ATT&CK…
  ☆165Updated 6 months ago
• iknowjason / edge
  Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.
  ☆166Updated 6 months ago
• WithSecureLabs / cloud-security-vm
  Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments
  ☆140Updated 4 months ago
• synacktiv / nord-stream
  Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …
  ☆278Updated 3 months ago
• boostsecurityio / lotp
  boostsecurityio/lotp
  ☆123Updated 3 weeks ago
• Littlehack3r / awesome-gcp-pentesting
  Tools and blogs I use to perform GCP red teams
  ☆112Updated 9 months ago
• saw-your-packet / CloudShovel
  A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…
  ☆107Updated 5 months ago
• 0xd4y / AWSealion
  A tool to keep AWS pentests and red teams efficient, organized, and stealthy.
  ☆91Updated last year
• vectra-ai-research / derf
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆94Updated last year
• XMCyber / XMGoat
  ☆173Updated 2 years ago
• DataDog / undocumented-aws-api-hunter
  A tool to uncover undocumented APIs from the AWS Console.
  ☆102Updated last week
• DataDog / HASH
  HASH (HTTP Agnostic Software Honeypot)
  ☆140Updated last year
• CCob / okta-terrify
  Okta Verify and Okta FastPass Abuse Tool
  ☆319Updated 8 months ago
• grahamhelton / IMDSpoof
  IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.
  ☆101Updated last year
• WithSecureLabs / IceKube
  ☆177Updated 2 weeks ago
• FalconForceTeam / dAWShund
  Putting a leash on naughty AWS permissions
  ☆115Updated 3 weeks ago
• synacktiv / Mindmaps
  Azure mindmap for penetration tests
  ☆184Updated last year
• DataDog / grimoire
  Generate datasets of cloud audit logs for common attacks
  ☆214Updated 8 months ago
• lutzenfried / OffensiveCloud
  Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)
  ☆329Updated 2 months ago
• Frichetten / SneakyEndpoints
  Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints
  ☆115Updated last year
• righteousgambit / quiet-riot
  Unauthenticated enumeration of AWS, Azure, and GCP Principals
  ☆229Updated 5 months ago
• Verizon / verizon_burp_extensions_ai
  Verizon Burp Extensions: AI Suite
  ☆128Updated 2 weeks ago
• RhinoSecurityLabs / GCP-IAM-Privilege-Escalation
  A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.
  ☆381Updated last year
• domain-protect / domain-protect-gcp
  Protect against subdomain takeover
  ☆92Updated 11 months ago
• boringtools / git-alerts
  Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files
  ☆218Updated 3 weeks ago
• grahamhelton / dredge
  Dredging up secrets from the depths of the file system
  ☆126Updated 6 months ago
• RefactorSecurity / vscode-security-notes
  Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝
  ☆133Updated last month