Alternatives and similar repositories for www-project-top-10-infrastructure-security-risks

Users that are interested in www-project-top-10-infrastructure-security-risks are comparing it to the libraries listed below

• saw-your-packet / CloudShovel
  A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…
  ☆107Updated 6 months ago
• offensive-actions / azure-storage-reverse-shell
  This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
  ☆37Updated 7 months ago
• lacioffi / GCP-pentest-lab
  A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities
  ☆27Updated last month
• tenable / hidden-services-revealer
  ☆35Updated 9 months ago
• brandon-t-elliott / cve2epss
  A simple web app to get the latest EPSS data for a CVE ID
  ☆11Updated last month
• elementsinteractive / twyn
  Security tool against dependency typosquatting attacks
  ☆39Updated this week
• kerberosmansour / InfoSecOpenAIExamples
  InfoSec OpenAI Examples
  ☆19Updated last year
• dagheyman / awesome-product-security
  📚A curated list of product security resources.
  ☆19Updated 2 years ago
• OWASP / owasp-istg
  The IoT Security Testing Guide (ISTG) provides a comprehensive methodology for penetration tests in the IoT field, offering flexibility t…
  ☆100Updated 7 months ago
• spark1security / n0s1
  Secret Scanner for Slack, Jira, Confluence, Asana, Wrike, Linear, Zendesk, and GitHub
  ☆59Updated 3 weeks ago
• ayushpriya10 / IMDShift
  ☆56Updated 2 years ago
• Permiso-io-tools / RansomWhen
  RansomWhen is a tool to enumerate identities that can lock S3 Buckets using KMS, resulting in ransomwares, as well as detect occurances o…
  ☆46Updated 3 months ago
• Permiso-io-tools / LogLicker
  Tool for obfuscating and deobfuscating data.
  ☆70Updated last year
• r3volved / CVEAggregate
  Build a CVE library with aggregated CISA, EPSS and CVSS data
  ☆27Updated last year
• Permiso-io-tools / cloudtail
  ☆29Updated 6 months ago
• grahamhelton / IMDSpoof
  IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.
  ☆102Updated last year
• owasp-amass / amass-docker-compose
  OWASP Amass Docker Compose for setting up a full instance of the infrastructure
  ☆43Updated last month
• kenhuangus / Artificial-Intelligence-Vulnerability-Scoring-System-AIVSS
  ☆36Updated 4 months ago
• jalacloud / mcp-cti
  Repo for experimenting and testing MCP server builds for CTI-related research.
  ☆22Updated this week
• silascutler / dockerhoneypot-logs
  Collection of Docker honeypot logs from 2021 - 2024
  ☆36Updated 7 months ago
• Permiso-io-tools / YetiHunter
  Permiso Security has created a tool to query snowflake environments for evidence of compromise, based on indicators from Permiso and the …
  ☆70Updated 10 months ago
• CERT-Polska / Artemis-modules-extra
  ☆28Updated this week
• antitree / go-pillage-registries
  Pentester-focused Docker registry tool to enumerate and pull images
  ☆21Updated 3 weeks ago
• FogSecurity / yes3-scanner
  YES3 Scanner: S3 Security Scanner for Access and Ransomware Protection
  ☆68Updated this week
• HarshVaragiya / aws-redteam-kit
  A PoC to Simulate Ransomware Attack on AWS Environment
  ☆31Updated 7 months ago
• mrwadams / otx-mcp
  ☆16Updated last month
• semgr8ns / semgr8s
  Semgrep-based Policy Controller for Kubernetes
  ☆47Updated last month
• n0jam / gcp-ctf-workshop
  ☆37Updated 5 months ago
• OWASP / wrongsecrets-ctf-party
  Run Capture the Flags and Security Trainings with OWASP WrongSecrets
  ☆46Updated this week
• SecurityRunners / cloud-exposure-catalog
  A catalog of services that can be publicly exposed within different cloud providers.
  ☆14Updated 8 months ago