Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
☆61May 15, 2023Updated 3 years ago
Alternatives and similar repositories for github-oidc-checker
Users that are interested in github-oidc-checker are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Jan 18, 2022Updated 4 years ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆59Sep 20, 2023Updated 2 years ago
- Compares and analyzes GCP IAM roles.☆78Mar 9, 2025Updated last year
- This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs☆39Sep 25, 2024Updated last year
- ☆114Jun 8, 2023Updated 3 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆141May 3, 2026Updated last month
- ☆30Jan 13, 2026Updated 5 months ago
- ☆40Aug 2, 2024Updated last year
- An AWS IAM policy statement parser and query tool.☆201Feb 10, 2026Updated 4 months ago
- This application was built to help reduce the amount of time it takes to review AWS Lambda code.☆62Nov 11, 2024Updated last year
- Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)☆33Apr 21, 2023Updated 3 years ago
- CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…☆88Updated this week
- Automated least-privilege enforcement for AWS IAM. Analyzes CloudTrail data to compute permission utilization metrics and generates polic…☆13Jan 12, 2026Updated 5 months ago
- Azure Activity Log Axe is a continually developing tool that simplifies the transactional log format provided by Microsoft. The tool leve…☆35Sep 6, 2024Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- AWS SSO Reporter☆55May 7, 2025Updated last year
- debug IAM roles for service accounts☆65Jun 19, 2026Updated last week
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆90Jan 28, 2024Updated 2 years ago
- Modron - Cloud security compliance☆34Dec 11, 2024Updated last year
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆114Jan 2, 2025Updated last year
- SCP management tool☆135Oct 23, 2023Updated 2 years ago
- Security tool against dependency typosquatting attacks☆55Jun 22, 2026Updated last week
- A GitHub Actions Supply Chain CTF / Goat☆27Apr 13, 2026Updated 2 months ago
- ☆192Apr 16, 2025Updated last year
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- 🖇️ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.☆76Aug 22, 2024Updated last year
- A Golang program to rotate AWS & GCP account keys☆67May 5, 2026Updated last month
- YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.☆36Jan 1, 2024Updated 2 years ago
- A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation☆112Feb 16, 2024Updated 2 years ago
- An easy to navigate list of unicode characters that have risky transformations 💥☆24Mar 22, 2022Updated 4 years ago
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆61Oct 19, 2023Updated 2 years ago
- ☆72May 13, 2025Updated last year
- Slack bot which promotes Defense in Depth/Zero Trust security practices☆25Jan 17, 2023Updated 3 years ago
- Useful scripts, Docker images, docker-compose apps, and Terraform modules.☆148Jun 15, 2026Updated 2 weeks ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Another Instagram Bot☆12Jan 21, 2018Updated 8 years ago
- Clean accounts over permissions in GCP infra at scale☆72May 9, 2023Updated 3 years ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆38Mar 4, 2025Updated last year
- ☆128May 25, 2026Updated last month
- ☆232Jun 10, 2026Updated 3 weeks ago
- K8s Network Policy Migrator is a tool to migrate Calico or Cilium custom network policies to Kubernetes native network policy. The tool o…☆32Aug 29, 2023Updated 2 years ago
- HashiCorp-relevant rules for the Semgrep code analysis tool☆42Oct 3, 2023Updated 2 years ago