OWASP / awscanner
Finds internet-exposed resources in an AWS account
☆18Updated 2 weeks ago
Related projects: ⓘ
- All-in-one tool for managing vulnerability reports from AppSec pipelines☆105Updated last year
- A Burp plugin to export findings to DefectDojo☆29Updated 10 months ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated last year
- AWS Security Checks☆36Updated 6 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆60Updated last year
- A curated list of security tools for Hackers & Builders!☆98Updated last month
- Amazon bucket brute force tool☆95Updated 11 years ago
- This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage clou…☆22Updated 4 years ago
- AWS S3 Sensitive Data Search☆36Updated 2 years ago
- A simple file-based scanner to look for potential AWS access and secret keys in files☆87Updated 6 months ago
- Hands-On AWS Penetration Testing with Kali Linux published by Packt☆119Updated last year
- KeepNote For OSCP Course☆22Updated 4 years ago
- A tool for testing objects' permissions in AWS buckets☆39Updated 3 years ago
- ☆27Updated 5 years ago
- A collection of response templates for invalid bug bounty reports.☆90Updated 6 years ago
- A tool to enumerate S3 buckets manually or via certstream☆80Updated last year
- AWS Extender CLI is a command-line script to test S3 buckets as well as Google Storage buckets and Azure Storage containers for common mi…☆81Updated 4 years ago
- Route53/CloudFront Vulnerability Assessment Utility☆83Updated last year
- A collection of tools to find data that has been made public in cloud storage systems such as S3 Buckets and Digital Ocean Spaces☆65Updated 2 years ago
- Tools for AWS forensics☆64Updated 8 years ago
- Python API library for DefectDojo☆40Updated last year
- AWS S3 Bucket/Object Finder☆113Updated 3 years ago
- A very vulnerable implementation of a GraphQL API.☆56Updated 2 years ago
- A static website template for security pages.☆49Updated 3 weeks ago
- Scans a list of websites for Cloudfront or S3 Buckets☆104Updated 2 years ago
- A collection of slides, videos, and proof-of-concept scripts from various Rhino presentations.☆37Updated 6 years ago
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆132Updated 4 years ago
- This repository maintains some of the scripts made by Ebryx DevSecOps team.☆12Updated last year
- ☆50Updated 2 years ago
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆48Updated 5 years ago