PaperMtn / slack-watchman
Slack enumeration and exposed secrets detection tool
☆366Updated last week
Related projects ⓘ
Alternatives and complementary repositories for slack-watchman
- OWASP Domain Protect - prevent subdomain takeover☆397Updated last month
- A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure☆656Updated last year
- Red Team Scripts for AWS.☆166Updated 4 years ago
- Search exposed EBS volumes for secrets☆285Updated last year
- Unauthenticated enumeration of AWS, Azure, and GCP Principals☆202Updated 3 months ago
- Resource types that can be publicly exposed on AWS☆316Updated 2 years ago
- A honey token manager and alert system for AWS.☆316Updated 2 years ago
- Documenting your Threat Models with HCL☆400Updated 2 months ago
- FestIn - Open S3 Bucket Scanner☆230Updated 3 years ago
- cloudgrep is grep for cloud storage☆319Updated 2 months ago
- ☆363Updated 8 months ago
- Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.☆477Updated 9 months ago
- A graph-based tool for visualizing effective access and resource relationships in AWS environments.☆920Updated 2 years ago
- Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.☆265Updated last month
- IAMFinder enumerates and finds users and IAM roles in a target AWS account.☆109Updated 3 years ago
- Find cloud assets that no one wants exposed 🔎 ☁️☆332Updated 4 years ago
- Monitors Github for leaked secrets☆189Updated 2 weeks ago
- S3 Account Search☆245Updated 3 weeks ago
- A simple tool to audit your AWS/GCP infrastructure for misconfiguration or potential security issues with plugins integration☆313Updated this week
- find dangling domains in a multi cloud environment☆135Updated 6 months ago
- Protect against subdomain takeover☆92Updated 5 months ago
- Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).☆138Updated 7 months ago
- Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.☆528Updated 6 months ago
- A checklist of practices for organizations dealing with account takeover (ATO)☆263Updated last month
- A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.☆341Updated 6 months ago
- Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.☆159Updated last week
- ☆109Updated 3 weeks ago
- 🖇️ STRIDE vs. ASVS equivalence table☆75Updated 2 months ago
- Scan publicly accessible assets on your AWS cloud environment☆139Updated 4 months ago