Pr0teus / aws-trail-recon
AWS Trail Recon is an idea that came up during gohacking's offensive AWS security training. The idea is to use cloudtrail:lookupevents to analyze what permissions the user of the leaked key has
☆10Updated 5 months ago
Related projects ⓘ
Alternatives and complementary repositories for aws-trail-recon
- Manage attack surface data on Elasticsearch☆20Updated 11 months ago
- ☆16Updated last year
- A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities☆25Updated 3 months ago
- This is a repository for Penetration Test, Purple Team Exercise and Red Team☆17Updated 10 months ago
- ☆10Updated 3 months ago
- CIS Benchmark testing of Windows SIEM configuration☆43Updated last year
- Collection of Tools & Techniques for analyzing URLs☆30Updated last year
- ☆77Updated 7 months ago
- A network logging tool that logs per process activities☆32Updated last year
- Penetration Testing & Red Team tools & scripts☆12Updated last year
- ☆29Updated last year
- A small tool that helps Incident responders and SOC analysts do a quick and initial analysis/assessment of malicious files☆26Updated last year
- The SAP Threat Modeling Tool is an on-premises open-source web application designed to analyze and visualize connections between SAP syst…☆47Updated 6 months ago
- A National Vulnerability Database (NVD) API query tool☆17Updated last year
- HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…☆39Updated 2 years ago
- ☆16Updated last year
- Some of my rough notes for Docker threat detection☆46Updated last year
- A tool to dump users's .plist on a Mac OS system and to convert them into a crackable hash☆47Updated last month
- Top 400 passwords as per HaveIBeenPwned☆20Updated 3 weeks ago
- Tools used for Pentesting☆22Updated last year
- Tool for scanning domains for .git directories.☆13Updated last year
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆50Updated last year
- This Python tool enables network node command and exfiltration while applying OPSEC to ensure the process is hidden by transmitting comma…☆33Updated 11 months ago
- Template Nuclei SSTI☆28Updated last year
- Comprehensive adversary emulation tool for security testing on Google Cloud Platform (GCP) environments.☆14Updated 4 months ago
- ☆26Updated 2 months ago
- ☆27Updated last year
- Information stealer logs parser☆34Updated 3 months ago
- cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com☆38Updated 2 years ago