Alternatives and similar repositories for SkyScalpel

Users that are interested in SkyScalpel are comparing it to the libraries listed below

• Permiso-io-tools / cloudtail

  View on GitHub
  ☆30Jan 13, 2026Updated last month
• Permiso-io-tools / capiche

  View on GitHub
  ☆18Feb 2, 2026Updated last week
• FogSecurity / finders-keypers

  View on GitHub
  Finders Keypers: AWS KMS Encryption Key Usage and Blast Radius Finder
  ☆45Aug 13, 2025Updated 6 months ago
• iKnowJavaScript / terraform-aws-vulne-soldier

  View on GitHub
  This Terraform module consists of the configuration for automating the remediation of AWS EC2 vulnerabilities using AWS Inspector finding…
  ☆50Jul 4, 2025Updated 7 months ago
• Permiso-io-tools / RansomWhen

  View on GitHub
  RansomWhen is a tool to enumerate identities that can lock S3 Buckets using KMS, resulting in ransomwares, as well as detect occurances o…
  ☆60Feb 5, 2025Updated last year
• wiz-sec-public / namespacehound

  View on GitHub
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆111Jan 2, 2025Updated last year
• aidansteele / s3zipper

  View on GitHub
  A tool that allows downloading S3 directories as ZIP files
  ☆35Apr 28, 2023Updated 2 years ago
• trustedsec / VerifyELF

  View on GitHub
  ☆26May 6, 2024Updated last year
• shindan-io / scnr

  View on GitHub
  deep file scanner tool
  ☆41Aug 13, 2025Updated 6 months ago
• luisfontes19 / orgsec-guide

  View on GitHub
  A comprehensive checklist and guide for organizations looking to implement a robust cybersecurity program
  ☆46Feb 2, 2026Updated last week
• adanalvarez / TrailDiscover

  View on GitHub
  An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…
  ☆172Feb 8, 2026Updated last week
• jdyke / gcp-iam-analyzer

  View on GitHub
  Compares and analyzes GCP IAM roles.
  ☆78Mar 9, 2025Updated 11 months ago
• Yamato-Security / suzaku-rules

  View on GitHub
  ☆11Dec 9, 2025Updated 2 months ago
• SEU-ProactiveSecurity-Group / LLM-PD

  View on GitHub
  Official code for the paper entitled "Toward Intelligent and Secure Cloud: Large Language Model Empowered Proactive Defense"
  ☆15Apr 10, 2025Updated 10 months ago
• center-for-threat-informed-defense / threat-modeling-with-attack

  View on GitHub
  Threat Modeling with ATT&CK defines how to integreate MITRE ATT&CK® into your organization’s existing threat modeling methodology.
  ☆12May 28, 2025Updated 8 months ago
• mark-adams / gcp-ip-list

  View on GitHub
  A CLI tool (and library) written in Go to simplify the process of retrieving IP addresses from infrastructure hosted on Google Cloud Plat…
  ☆11Nov 20, 2025Updated 2 months ago
• jstawinski / GitHub-Actions-Attack-Diagram

  View on GitHub
  ☆192Apr 16, 2025Updated 9 months ago
• Permiso-io-tools / azure-activity-log-axe

  View on GitHub
  Azure Activity Log Axe is a continually developing tool that simplifies the transactional log format provided by Microsoft. The tool leve…
  ☆35Sep 6, 2024Updated last year
• RyanJarv / roles

  View on GitHub
  Unauthenticated enumeration of AWS IAM Roles.
  ☆26Sep 7, 2025Updated 5 months ago
• SecurityRunners / awsdocs

  View on GitHub
  Repository to archive AWS Documentation for local use
  ☆50Oct 14, 2024Updated last year
• yanilov / control-tags

  View on GitHub
  Scalable integrity framework for ABAC on AWS
  ☆56Mar 14, 2025Updated 11 months ago
• Cybr-Inc / CloudSec

  View on GitHub
  Public repository of all things cloud security.
  ☆47Sep 20, 2024Updated last year
• righteousgambit / quiet-riot

  View on GitHub
  Unauthenticated enumeration of AWS, Azure, and GCP Principals
  ☆282Nov 27, 2025Updated 2 months ago
• Permiso-io-tools / bucket-shield

  View on GitHub
  ☆14Jan 8, 2026Updated last month
• jmespath-community / jmespath.spec

  View on GitHub
  JMESPath Community specification.
  ☆13May 23, 2025Updated 8 months ago
• latacora / remediate-AWS-IMDSv1

  View on GitHub
  Simple tool to identify and remediate the use of the AWS EC2 IMDSv1.
  ☆15Aug 12, 2021Updated 4 years ago
• huntresslabs / rogueapps

  View on GitHub
  When good OAuth apps go rogue. Documents observed OAuth application tradecraft
  ☆84Jan 30, 2026Updated 2 weeks ago
• antitree / cmd_and_kubectl_demos

  View on GitHub
  ☆27Oct 1, 2025Updated 4 months ago
• cloud-copilot / iam-simulate

  View on GitHub
  An IAM Simulator that outputs detailed explains of how a request was evaluated.
  ☆97Updated this week
• miao2sec / collect-cloud-native-sec-vuln

  View on GitHub
  云原生安全漏洞收集
  ☆18Jul 9, 2025Updated 7 months ago
• 4n6ist / mssql_4n6

  View on GitHub
  Parsers for .mdf file of Microsoft SQL Server (MSSQL)
  ☆15Mar 28, 2020Updated 5 years ago
• AntSwordProject / AntSword-JSP-Decoder

  View on GitHub
  Jsp Decoder Source Code
  ☆16Mar 23, 2021Updated 4 years ago
• topher-lo / hunts

  View on GitHub
  🐻‍❄️ 🏹 Threat hunting with Polars and flaws.cloud AWS CloudTrail datasets.
  ☆14May 22, 2024Updated last year
• antitree / vault-backdoored

  View on GitHub
  A tool for secrets management, encryption as a service, and privileged access management
  ☆13Jul 17, 2025Updated 6 months ago
• offensive-actions / terraform-provider-statefile-rce

  View on GitHub
  This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.
  ☆61Jan 25, 2025Updated last year
• aws-samples / resource-control-policy-examples

  View on GitHub
  Example AWS Resource control policies to get started or mature your usage of AWS RCPs.
  ☆197Feb 2, 2026Updated last week
• Babyhamsta / Malcrow

  View on GitHub
  A Malware Scarecrow for Windows 10/11 with a user-friendly touch.
  ☆69Oct 30, 2024Updated last year
• welldone-cloud / aws-list-resources

  View on GitHub
  Uses the AWS Cloud Control API to list resources that are present in a given AWS account and region(s). Discovered resources are written …
  ☆182Dec 21, 2025Updated last month
• DataDog / whoAMI-scanner

  View on GitHub
  Scan your account for the use of untrusted AMIs
  ☆31Updated this week