Pr0teus / aws-trail-reconLinks
AWS Trail Recon is an idea that came up during gohacking's offensive AWS security training. The idea is to use cloudtrail:lookupevents to analyze what permissions the user of the leaked key has
☆15Updated last year
Alternatives and similar repositories for aws-trail-recon
Users that are interested in aws-trail-recon are comparing it to the libraries listed below
Sorting:
- A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities☆27Updated 3 months ago
- DelePwn is a security assessment tool designed to identify and demonstrate the risks associated with Google Workspace Domain-Wide Delegat…☆33Updated last month
- crtdumper is a Go application designed to interact directly with Certificate Transparency (CT) logs servers and extract domain names fro…☆28Updated last year
- Manage attack surface data on Elasticsearch☆22Updated last year
- My journey and notes on learning Offensive Security from the ground up☆18Updated last year
- SANS Workshop: Active Directory Privilege Escalation with Empire!☆31Updated 2 months ago
- ☆17Updated 2 years ago
- This is a repository for Penetration Test, Purple Team Exercise and Red Team☆17Updated last year
- ☆39Updated 2 weeks ago
- If you are interested in a live feed API, please contact us☆15Updated 2 months ago
- Exploit for Symfony CVE-2024-50340 (forked eos)☆29Updated 7 months ago
- Kubernetes, Clusters and Dockers Enumeration in GCP and AWS environments☆13Updated last year
- Tools used for Pentesting☆22Updated 2 years ago
- Challenge Python☆19Updated 2 years ago
- This repository has workflows created for https://github.com/RikunjSindhwad/Task-Ninja☆23Updated 10 months ago
- Nuclei templates for source code analysis. Detects hardcoded secrets, config leaks, debug endpoints. Also helps identify OWASP Top 10 iss…☆57Updated 2 weeks ago
- Burp Extension to identify PII data☆21Updated 4 years ago
- This repository contains scripts about ACL abuse and any other active directory attacking methods.☆36Updated last year
- Tool for fetching all the available waybackmachine snapshot urls☆21Updated 8 months ago
- moniorg is a tool that leverages crt.sh website to monitor domains of a target☆47Updated 2 years ago
- A steampipe plugin to query projectdiscovery.io tools.☆26Updated 11 months ago
- ☆77Updated last year
- A simple web app to get the latest EPSS data for a CVE ID☆11Updated 2 months ago
- Tool for scanning domains for .git directories.☆16Updated last year
- A not-curated list of cloud hacking labs☆25Updated last year
- Determine privileges from cloud credentials via brute-force testing.☆69Updated 10 months ago
- ☆12Updated 2 months ago
- ☆20Updated 3 years ago
- A network logging tool that logs per process activities☆32Updated 2 years ago
- Vast.ai Password Kracking☆69Updated last week