ReversecLabs / cloud-wikiLinks
A public cloud security knowledgebase - https://www.secwiki.cloud/
☆51Updated 10 months ago
Alternatives and similar repositories for cloud-wiki
Users that are interested in cloud-wiki are comparing it to the libraries listed below
Sorting:
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated 2 years ago
- Blogpost series showcasing interesting cloud - web app security bugs☆49Updated 2 years ago
- ☆50Updated last year
- Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints☆122Updated 2 months ago
- This application was built to help reduce the amount of time it takes to review AWS Lambda code.☆60Updated 10 months ago
- A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation☆108Updated last year
- ☆139Updated 2 years ago
- ☆57Updated 2 years ago
- Whois for the Cloud: Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.☆174Updated this week
- GCP GOAT is the vulnerable application for learn the GCP Security☆67Updated 4 months ago
- ☆60Updated 2 years ago
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆61Updated 2 years ago
- AWS SSO serverless phishing API.☆32Updated 4 years ago
- A tool to keep AWS pentests and red teams efficient, organized, and stealthy.☆96Updated last year
- Holds the public Hacking the Cloud CTFs.☆59Updated last year
- ☆126Updated last year
- ☆113Updated 2 years ago
- ☆140Updated last month
- Determine privileges from cloud credentials via brute-force testing.☆69Updated last year
- An AWS metadata enumeration tool by Plerion☆98Updated last year
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆137Updated 5 months ago
- A small library to alter AWS API requests; Used for fuzzing research☆22Updated last year
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Updated 3 years ago
- IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.☆104Updated last year
- Utility for downloading and mounting EBS snapshots using the EBS Direct API's☆86Updated 6 months ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆42Updated last year
- Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure☆47Updated last year
- ☆39Updated last year
- A toolset to juggle AWS roles for persistent access☆60Updated last year
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆109Updated 10 months ago