PaperMtn / slack-watchman

Related projects ⓘ

Alternatives and complementary repositories for slack-watchman

• domain-protect / domain-protect
  OWASP Domain Protect - prevent subdomain takeover
  ☆397Updated last month
• nccgroup / sadcloud
  A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure
  ☆656Updated last year
• ihamburglar / Redboto
  Red Team Scripts for AWS.
  ☆166Updated 4 years ago
• BishopFox / dufflebag
  Search exposed EBS volumes for secrets
  ☆285Updated last year
• righteousgambit / quiet-riot
  Unauthenticated enumeration of AWS, Azure, and GCP Principals
  ☆202Updated 3 months ago
• SummitRoute / aws_exposable_resources
  Resource types that can be publicly exposed on AWS
  ☆316Updated 2 years ago
• spacesiren / spacesiren
  A honey token manager and alert system for AWS.
  ☆316Updated 2 years ago
• threatcl / threatcl
  Documenting your Threat Models with HCL
  ☆400Updated 2 months ago
• cr0hn / festin
  FestIn - Open S3 Bucket Scanner
  ☆230Updated 3 years ago
• cado-security / cloudgrep
  cloudgrep is grep for cloud storage
  ☆319Updated 2 months ago
• easttimor / aws-incident-response
  ☆363Updated 8 months ago
• BishopFox / iam-vulnerable
  Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
  ☆477Updated 9 months ago
• WithSecureLabs / awspx
  A graph-based tool for visualizing effective access and resource relationships in AWS environments.
  ☆920Updated 2 years ago
• assetnote / ghostbuster
  Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.
  ☆265Updated last month
• prisma-cloud / IAMFinder
  IAMFinder enumerates and finds users and IAM roles in a target AWS account.
  ☆109Updated 3 years ago
• BishopFox / smogcloud
  Find cloud assets that no one wants exposed 🔎 ☁️
  ☆332Updated 4 years ago
• duo-labs / secret-bridge
  Monitors Github for leaked secrets
  ☆189Updated 2 weeks ago
• WeAreCloudar / s3-account-search
  S3 Account Search
  ☆245Updated 3 weeks ago
• padok-team / yatas
  A simple tool to audit your AWS/GCP infrastructure for misconfiguration or potential security issues with plugins integration
  ☆313Updated this week
• anirudhbiyani / findmytakeover
  find dangling domains in a multi cloud environment
  ☆135Updated 6 months ago
• domain-protect / domain-protect-gcp
  Protect against subdomain takeover
  ☆92Updated 5 months ago
• salesforce / metabadger
  Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
  ☆138Updated 7 months ago
• joshlarsen / aws-recon
  Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.
  ☆528Updated 6 months ago
• magoo / ato-checklist
  A checklist of practices for organizations dealing with account takeover (ATO)
  ☆263Updated last month
• RhinoSecurityLabs / GCP-IAM-Privilege-Escalation
  A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.
  ☆341Updated 6 months ago
• iknowjason / edge
  Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.
  ☆159Updated last week
• orcasecurity / orca-toolbox
  ☆109Updated 3 weeks ago
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆75Updated 2 months ago
• 9rnt / poro
  Scan publicly accessible assets on your AWS cloud environment
  ☆139Updated 4 months ago