Rezonate-io / github-oidc-checker
Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
☆56Updated last year
Related projects: ⓘ
- Compares and analyzes GCP IAM roles.☆76Updated 3 months ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆56Updated 6 months ago
- Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure☆42Updated 8 months ago
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Updated 2 years ago
- ☆33Updated 2 months ago
- An AWS metadata enumeration tool by Plerion☆72Updated 7 months ago
- HashiCorp-relevant rules for the Semgrep code analysis tool☆37Updated 11 months ago
- A toolset to juggle AWS roles for persistent access☆47Updated last month
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.☆29Updated 5 months ago
- Clean accounts over permissions in GCP infra at scale☆70Updated last year
- AWS honey token manager☆78Updated last month
- Generates runbooks for GuardDuty findings☆34Updated 2 months ago
- This application was built to help reduce the amount of time it takes to review AWS Lambda code.☆60Updated 3 months ago
- AWS SSO Reporter☆54Updated last year
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆76Updated this week
- WAF bypass PoC☆43Updated 11 months ago
- Independently deploy customized honeyservices in AWS to trigger alerts on unauthorized access. It utilizes a dedicated CloudTrail for pre…☆42Updated 4 months ago
- Convert cloudtrail data to MITRE ATT&CK Sightings☆77Updated 2 years ago
- ☆45Updated last year
- ☆37Updated 3 weeks ago
- ☆108Updated last month
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆57Updated 11 months ago
- An AWS IAM policy statement parser and query tool.☆153Updated 7 months ago
- https://breaches.cloud☆36Updated 2 months ago
- ☆31Updated last year
- IAM-Deescalate helps mitigate privilege escalation risk in AWS identity and access management (IAM)☆94Updated 2 years ago
- Protect against subdomain takeover☆92Updated 3 months ago
- Utility for downloading and mounting EBS snapshots using the EBS Direct API's☆72Updated last year
- IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.☆91Updated 9 months ago
- Tool for obfuscating and deobfuscating data.☆60Updated 5 months ago