RhinoSecurityLabs / GCPBucketBruteLinks
A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.
☆532Updated 2 years ago
Alternatives and similar repositories for GCPBucketBrute
Users that are interested in GCPBucketBrute are comparing it to the libraries listed below
Sorting:
- ☆257Updated last year
- Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.☆254Updated 3 weeks ago
- Cloud-related research releases from the Rhino Security Labs team.☆391Updated 5 years ago
- Search exposed EBS volumes for secrets☆299Updated 2 years ago
- Find cloud assets that no one wants exposed 🔎 ☁️☆348Updated 5 years ago
- Find AWS S3 buckets and test their permissions.☆393Updated 2 years ago
- Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.☆639Updated 5 years ago
- WeirdAAL (AWS Attack Library)☆818Updated 7 months ago
- This repository will contain all trainings and tutorials I have done/read to prepare for OSWE / AWAE.☆242Updated 5 years ago
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆266Updated 2 years ago
- These are the regexes that power truffleHog☆218Updated 2 years ago
- Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's yo…☆218Updated 5 years ago
- Damn Vulnerable Cloud Application☆197Updated 6 years ago
- CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.☆530Updated 3 years ago
- A collection of awesome AWS S3 tools that collects and enumerates exposed S3 buckets☆379Updated last year
- ☆598Updated last year
- A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.☆397Updated last year
- Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to …☆755Updated 11 months ago
- Awesome cloud enumerator☆1,035Updated 5 months ago
- This is an offensive guide to securing AWS infrastructures. The hope is that by knowing how to take advantage of various types of AWS wea…☆172Updated 6 years ago
- An automated target reconnaissance pipeline.☆437Updated 2 years ago
- Pentesting/Bugbounty Dockerfiles.☆177Updated 4 years ago
- IPFuscator - A tool to automatically generate alternative IP representations☆373Updated last year
- ☆276Updated 3 years ago
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆356Updated 4 years ago
- Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists☆747Updated 2 years ago
- An automated approach to performing recon for bug bounty hunting and penetration testing.☆449Updated 5 years ago
- Amazon S3 bucket finder and crawler.☆154Updated 3 years ago
- Bugbounty scope tool☆330Updated 5 months ago
- A tool to hunt for credentials in github wild AKA git*hunt☆297Updated 2 years ago