RhinoSecurityLabs / CloudScraper
CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
☆31Updated 3 years ago
Alternatives and similar repositories for CloudScraper:
Users that are interested in CloudScraper are comparing it to the libraries listed below
- AWSATT&CK adds MITRE ATT&CK context and additional logging capabilities to Rhino Security Labs's open-source AWS exploitation framework, …☆45Updated 4 years ago
- Virtual Security Operations Center☆50Updated last year
- This repository contains the research and components of our research into using Sigma for AWS Incident Response.☆27Updated last year
- Determine privileges from cloud credentials via brute-force testing.☆67Updated 6 months ago
- A PoC to Simulate Ransomware Attack on AWS Environment☆30Updated 5 months ago
- ☆20Updated last year
- ☆33Updated 3 months ago
- ☆41Updated 3 weeks ago
- ☆58Updated last year
- Enumerate AWS permissions and resources.☆67Updated 2 years ago
- ☆55Updated last year
- A tool to keep AWS pentests and red teams efficient, organized, and stealthy.☆90Updated last year
- ☆18Updated 2 years ago
- GCP GOAT is the vulnerable application for learn the GCP Security☆64Updated last year
- This application was built to help reduce the amount of time it takes to review AWS Lambda code.☆60Updated 4 months ago
- HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…☆39Updated 2 years ago
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…☆16Updated 9 months ago
- ☆134Updated last year
- ☆43Updated 9 months ago
- AWS SSO serverless phishing API.☆31Updated 3 years ago
- GCP cloud security CTF☆44Updated last year
- Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters☆14Updated 4 years ago
- A guide to simplify the process of evaluating Datadog's Cloud SIEM security capabilities to detect AWS threats.☆18Updated last year
- A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities☆26Updated 8 months ago
- Scripts and misc. stuff related to the PortSwigger Web Academy☆17Updated 3 years ago
- ☆14Updated 2 years ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated last year
- This repository mainly focuses on various techniques, tools, frameworks and approach to perform offensive exploitation of AWS infrastruct…☆11Updated 5 years ago