Alternatives and similar repositories for gcpwn:

Users that are interested in gcpwn are comparing it to the libraries listed below

• unknownhad / CloudIntel
  This repo contains IOC, malware and malware analysis associated with Public cloud
  ☆249Updated 5 months ago
• jstawinski / GitHub-Actions-Attack-Diagram
  ☆176Updated this week
• vectra-ai-research / Halberd
  Halberd : Multi-Cloud Attack Platform
  ☆266Updated this week
• iknowjason / edge
  Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.
  ☆166Updated 5 months ago
• synacktiv / nord-stream
  Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …
  ☆277Updated 2 months ago
• boostsecurityio / lotp
  boostsecurityio/lotp
  ☆123Updated this week
• XMCyber / XMGoat
  ☆172Updated last year
• elastic / SWAT
  Simple Workspace Attack Tool (SWAT) is a tool for simulating malicious behavior against Google Workspace in reference to the MITRE ATT&CK…
  ☆164Updated 6 months ago
• WithSecureLabs / cloud-security-vm
  Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments
  ☆139Updated 3 months ago
• lutzenfried / OffensiveCloud
  Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)
  ☆325Updated last month
• 0xd4y / AWSealion
  A tool to keep AWS pentests and red teams efficient, organized, and stealthy.
  ☆91Updated last year
• DataDog / undocumented-aws-api-hunter
  A tool to uncover undocumented APIs from the AWS Console.
  ☆101Updated 4 months ago
• vectra-ai-research / derf
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆91Updated last year
• saw-your-packet / CloudShovel
  A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…
  ☆105Updated 5 months ago
• RhinoSecurityLabs / GCP-IAM-Privilege-Escalation
  A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.
  ☆378Updated last year
• CCob / okta-terrify
  Okta Verify and Okta FastPass Abuse Tool
  ☆314Updated 7 months ago
• DataDog / HASH
  HASH (HTTP Agnostic Software Honeypot)
  ☆138Updated 11 months ago
• RefactorSecurity / vscode-security-notes
  Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝
  ☆133Updated 2 weeks ago
• WithSecureLabs / IceKube
  ☆176Updated 4 months ago
• Frichetten / SneakyEndpoints
  Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints
  ☆113Updated last year
• DataDog / grimoire
  Generate datasets of cloud audit logs for common attacks
  ☆211Updated 8 months ago
• Littlehack3r / awesome-gcp-pentesting
  Tools and blogs I use to perform GCP red teams
  ☆110Updated 8 months ago
• x1trap / websec-answers
  Websec interview questions by tib3rius answered
  ☆307Updated last year
• tenable / EscalateGPT
  An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.
  ☆107Updated 6 months ago
• shabarkin / aws-enumerator
  The AWS Enumerator was created for service enumeration and info dumping for investigations of penetration testers during Black-Box testin…
  ☆200Updated 3 years ago
• Verizon / verizon_burp_extensions_ai
  Verizon Burp Extensions: AI Suite
  ☆124Updated 3 weeks ago
• g0ldencybersec / CloudRecon
  ☆479Updated 11 months ago
• synacktiv / Mindmaps
  Azure mindmap for penetration tests
  ☆181Updated last year
• grahamhelton / IMDSpoof
  IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.
  ☆101Updated last year
• righteousgambit / quiet-riot
  Unauthenticated enumeration of AWS, Azure, and GCP Principals
  ☆224Updated 5 months ago