RhinoSecurityLabs / GCPBucketBrute

Related projects ⓘ

Alternatives and complementary repositories for GCPBucketBrute

• RhinoSecurityLabs / Cloud-Security-Research
  Cloud-related research releases from the Rhino Security Labs team.
  ☆356Updated 4 years ago
• NotSoSecure / cloud-service-enum
  ☆232Updated 4 months ago
• koenrh / s3enum
  Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.
  ☆227Updated 2 weeks ago
• BishopFox / dufflebag
  Search exposed EBS volumes for secrets
  ☆286Updated last year
• BishopFox / eyeballer
  Convolutional neural network for analyzing pentest screenshots
  ☆1,040Updated 9 months ago
• gwen001 / s3-buckets-finder
  Find AWS S3 buckets and test their permissions.
  ☆368Updated last year
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆168Updated 2 years ago
• RhinoSecurityLabs / GCP-IAM-Privilege-Escalation
  A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.
  ☆343Updated 7 months ago
• carnal0wnage / weirdAAL
  WeirdAAL (AWS Attack Library)
  ☆781Updated last year
• tomdev / teh_s3_bucketeers
  ☆273Updated 3 years ago
• capt-meelo / LazyRecon
  An automated approach to performing recon for bug bounty hunting and penetration testing.
  ☆442Updated 4 years ago
• BishopFox / smogcloud
  Find cloud assets that no one wants exposed 🔎 ☁️
  ☆332Updated 4 years ago
• LewisArdern / bXSS
  bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
  ☆518Updated last year
• teknogeek / ssrf-sheriff
  A simple SSRF-testing sheriff written in Go
  ☆316Updated 2 weeks ago
• RhinoSecurityLabs / ccat
  Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.
  ☆591Updated 5 years ago
• root4loot / rescope
  Bugbounty scope tool
  ☆318Updated last month
• initstring / cloud_enum
  Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
  ☆1,686Updated last month
• 0xsha / CloudBrute
  Awesome cloud enumerator
  ☆894Updated 3 months ago
• nahamsec / lazys3
  ☆532Updated 9 months ago
• brianwarehime / inSp3ctor
  AWS S3 Bucket/Object Finder
  ☆116Updated 3 years ago
• prodigysml / Dr.-Watson
  Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's yo…
  ☆214Updated 5 years ago
• epi052 / recon-pipeline
  An automated target reconnaissance pipeline.
  ☆428Updated last year
• appsecco / attacking-cloudgoat2
  A step-by-step walkthrough of CloudGoat 2.0 scenarios.
  ☆133Updated 4 years ago
• JoshuaMart / AutoRecon
  Simple shell script for automated domain recognition with some tools
  ☆300Updated 4 years ago
• assetnote / commonspeak2-wordlists
  Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.
  ☆524Updated 6 years ago
• pentester-io / commonspeak
  Content discovery wordlists generated using BigQuery
  ☆558Updated 4 years ago
• andresriancho / enumerate-iam
  Enumerate the permissions associated with AWS credential set
  ☆1,098Updated 9 months ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆252Updated 2 years ago
• detectify / ugly-duckling
  Ugly Duckling is a lightweight scanner built specifically for our Crowdsource community to submit proof-of-concept modules
  ☆188Updated 3 years ago
• vysecurity / IPFuscator
  IPFuscator - A tool to automatically generate alternative IP representations
  ☆352Updated 10 months ago