Prevenity / Cloud-Security
GCP and GSUITE security auditing scripts
☆26Updated 4 months ago
Related projects: ⓘ
- Monitoring GitHub for sensitive data shared publicly☆66Updated 2 years ago
- Tools for AWS forensics☆64Updated 8 years ago
- A collection of slides, videos, and proof-of-concept scripts from various Rhino presentations.☆37Updated 6 years ago
- Proof of Concept Zappa Based AWS Persistence and Attack Platform☆37Updated 4 years ago
- Leverage the ability of Terraform and AWS or GCP to distribute large security scans across numerous cloud instances.☆92Updated 10 months ago
- Python module for evaluation of AWS account best practices around incident handling readieness.☆54Updated 4 years ago
- A simple file-based scanner to look for potential AWS access and secret keys in files☆87Updated 6 months ago
- Hayat is a script for report and analyze Google Cloud Platform resources.☆79Updated 4 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆74Updated 2 years ago
- Scans Slack for API tokens, credentials, passwords, and more using YARA rules☆37Updated 3 years ago
- Materials for the BSides NoVA/Charleston 2018 Bro Workshop☆14Updated last year
- Welcome to OpenDevSecOps! Our mission is to deliver highly-resilient, readily-available and free defensive and offensive devops security …☆21Updated 5 years ago
- ☆66Updated this week
- 🏰 A Python script for AWS S3 bucket enumeration.☆53Updated 4 years ago
- Amazon S3 bucket spelunking!☆84Updated 7 years ago
- Repository for all the workshop content delivered at nullcon X on 1st of March 2019☆80Updated 5 years ago
- ☆65Updated 7 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆60Updated last year
- Core incident handling plugins for aws_ir cli, incident pony, and more.☆21Updated 6 years ago
- AWS Extender CLI is a command-line script to test S3 buckets as well as Google Storage buckets and Azure Storage containers for common mi…☆81Updated 4 years ago
- Finding Valuable Needles in Global Source Code Haystacks with Automation☆18Updated 3 years ago
- A tool to enumerate S3 buckets manually or via certstream☆80Updated last year
- A command line security audit tool for Amazon Web Services☆79Updated 5 years ago
- Amazon bucket brute force tool☆95Updated 11 years ago
- Burp as a Docker Container☆59Updated 4 years ago
- Pivot into private VPC networks using a VPN connection☆40Updated 4 years ago
- Multilingual domain typo permutation engine used to perform or detect typosquatting, brandjacking, URL hijacking, fraud, phishing attack…☆6Updated 2 months ago
- ☆24Updated 5 years ago
- Scripts for AWS amusement...☆19Updated 2 years ago
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.☆61Updated 5 years ago