Comprehensive AWS cloud reconnaissance and privilege escalation toolkit written in Python. Features IAM, EC2, S3, Lambda, ECS, Secrets Manager, and more — with multi-region scanning and auto-suggested privilege escalation paths.
☆50Jul 8, 2025Updated last year
Alternatives and similar repositories for CloudTap
Users that are interested in CloudTap are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- This tool is designed to seamlessly convert Postman collections into OpenAPI schemas. This conversion is essential for API security testi…☆12Sep 3, 2024Updated last year
- Automated Cloud Misconfiguration Testing☆26Jun 20, 2025Updated last year
- Autonomous AI C2☆33Jul 23, 2024Updated last year
- Have you ever wanted to search a link or IP address on multiple OSINT pages at once?☆65Jul 7, 2025Updated last year
- Azure AD (Entra ID) enumeration tool. Find related domains and tenant information in a simple way.☆35Oct 4, 2024Updated last year
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- A Docker lab integrating Splunk SIEM with Ollama LLM via MCP for AI security operations. Features Promptfoo OWASP evaluation, TA-ollama a…☆31Updated this week
- Research into Undocumented Behavior of Azure AD Refresh Tokens☆13Oct 27, 2023Updated 2 years ago
- regex Hunter- Fast website endpoint sensitive data and Leaks JS files endpoint API Key Scraper☆15Jun 8, 2024Updated 2 years ago
- ☆17Oct 30, 2022Updated 3 years ago
- ☆13Oct 24, 2024Updated last year
- ☆10Dec 8, 2022Updated 3 years ago
- CVE-2024-4879 - Jelly Template Injection Vulnerability in ServiceNow☆26Jul 13, 2024Updated last year
- some bare tooling for interacting with Blazor Server☆14Aug 5, 2022Updated 3 years ago
- OSCP Cheatsheet☆18Jun 14, 2023Updated 3 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A table containing CTF challenge links and their corresponding walkthroughs from different platforms.☆13Oct 23, 2022Updated 3 years ago
- ☆52Mar 16, 2026Updated 3 months ago
- This is my personal Enumeration Handbook that I used for the OSCP 2023☆26Aug 21, 2023Updated 2 years ago
- ☆120May 29, 2025Updated last year
- Very Vulnerable Management API (VVMA) is a deliberately insecure RESTful API built with Node.js for educational and testing purposes. It …☆72Jun 5, 2025Updated last year
- A curated list of daily learnings, writeups, blogs, tips and everything related to hacking☆12Feb 5, 2023Updated 3 years ago
- ☆25Sep 5, 2025Updated 10 months ago
- ANY.RUN sandbox detection collection☆25Aug 21, 2024Updated last year
- PowerShell Obfuscator☆247Mar 18, 2026Updated 3 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Reverse_Shell Implemented in C++ with the ability to bypass sandboxes☆12Apr 2, 2021Updated 5 years ago
- ☆47Mar 7, 2025Updated last year
- QUESTER is a Web Pentesting & Bug Bounty Recon tool which queries URLs / Subdomains from the given list of URLs or subdomains.☆15Aug 2, 2021Updated 4 years ago
- A very simple python script to encode and decode PowerShell one-liners.☆25Feb 13, 2022Updated 4 years ago
- CVE-2025-64155: Fortinet FortiSIEM Argument Injection to Remote Code Execution☆32Jan 13, 2026Updated 5 months ago
- ☆20Dec 1, 2025Updated 7 months ago
- This repository contains complete source code for setting up the environment and exploit code for the vulnerability.☆19Mar 23, 2023Updated 3 years ago
- A simple web app to get the latest EPSS data for a CVE ID☆13Dec 14, 2025Updated 6 months ago
- ☆36Mar 11, 2022Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- ☆13Jan 26, 2023Updated 3 years ago
- Fuzz every path with goky☆14Jan 4, 2024Updated 2 years ago
- PowerShell-based Automation of Defender for Endpoint☆195Jul 3, 2025Updated last year
- ☆11Aug 28, 2025Updated 10 months ago
- A deliberately vulnerable Microsoft Entra ID environment. Learn identity security through hands-on, realistic attack challenges.☆960May 6, 2026Updated 2 months ago
- Working reverse-engineered Claude Code CLI rebuilt from source analysis to reproduce the original terminal workflow☆113Apr 18, 2026Updated 2 months ago
- Exfiltrate data over audio output from remote desktop sessions - Covert channel PoC☆66Dec 2, 2024Updated last year