NicholasSpringer / thunder-ctf
GCP cloud security CTF
☆41Updated 8 months ago
Related projects ⓘ
Alternatives and complementary repositories for thunder-ctf
- ☆31Updated last week
- Enumerate AWS permissions and resources.☆64Updated 2 years ago
- ☆58Updated last year
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆57Updated 2 years ago
- GCP GOAT is the vulnerable application for learn the GCP Security☆62Updated last year
- Blogpost series showcasing interesting cloud - web app security bugs☆46Updated last year
- Virtual Security Operations Center☆49Updated last year
- ☆133Updated last year
- Determine privileges from cloud credentials via brute-force testing.☆64Updated 2 months ago
- Slides and materials for conference presentations☆11Updated last year
- Slackhound allows red and blue teams to perform fast reconnaissance on Slack workspaces/organizations to quickly search user profiles, lo…☆74Updated 9 months ago
- CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.☆27Updated 2 years ago
- This script is a multi-threaded Okta password sprayer.☆69Updated 10 months ago
- Detections for CVE-2021-44228 inside of nested binaries☆34Updated 2 years ago
- Posts about different topics☆36Updated 8 months ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆72Updated 2 years ago
- List of Red Team Resources☆17Updated 4 years ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated last year
- ☆68Updated last year
- ☆40Updated 5 months ago
- An Evil OIDC Server☆51Updated 2 years ago
- Scripts and misc. stuff related to the PortSwigger Web Academy☆17Updated 2 years ago
- Dynamic Labs is an open source tool aimed at red teamers and pentesters for the quick deployment of flexible, transient and cloud-hosted …☆60Updated 10 months ago
- A Python implementation of dafthack's MSOLSpray. A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if …☆82Updated 5 months ago
- cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com☆38Updated 2 years ago
- ☆41Updated last month
- Jenkins Security Research☆10Updated 3 months ago
- ☆76Updated 5 years ago
- A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities☆25Updated 4 months ago