RhinoSecurityLabs / GCPBucketBruteLinks
A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.
☆536Updated 2 years ago
Alternatives and similar repositories for GCPBucketBrute
Users that are interested in GCPBucketBrute are comparing it to the libraries listed below
Sorting:
- ☆259Updated last year
- Cloud-related research releases from the Rhino Security Labs team.☆392Updated 5 years ago
- Search exposed EBS volumes for secrets☆300Updated 2 years ago
- Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.☆256Updated 2 months ago
- Find cloud assets that no one wants exposed 🔎 ☁️☆348Updated 5 years ago
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆267Updated 2 years ago
- IPFuscator - A tool to automatically generate alternative IP representations☆392Updated last year
- Find AWS S3 buckets and test their permissions.☆395Updated 2 years ago
- Convolutional neural network for analyzing pentest screenshots☆1,246Updated last year
- WeirdAAL (AWS Attack Library)☆821Updated 8 months ago
- A tool to hunt for credentials in github wild AKA git*hunt☆297Updated 2 years ago
- An automated target reconnaissance pipeline.☆437Updated 2 years ago
- A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.☆402Updated last year
- Awesome cloud enumerator☆1,047Updated 6 months ago
- Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.☆642Updated 5 years ago
- A tool geared towards pentesting APIs using OpenAPI definitions.☆181Updated 2 years ago
- Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists☆751Updated 2 years ago
- These are the regexes that power truffleHog☆218Updated 2 years ago
- Scrapts Scrapts Scrapts☆240Updated last year
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆548Updated 2 years ago
- Damn Vulnerable Cloud Application☆199Updated 7 years ago
- Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to …☆754Updated last year
- Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's yo…☆216Updated 5 years ago
- Bugbounty scope tool☆330Updated 7 months ago
- A collection of awesome AWS S3 tools that collects and enumerates exposed S3 buckets☆385Updated last year
- Pentesting/Bugbounty Dockerfiles.☆177Updated 4 years ago
- Amazon S3 bucket finder and crawler.☆155Updated 3 years ago
- ☆605Updated last year
- This repository will contain all trainings and tutorials I have done/read to prepare for OSWE / AWAE.☆241Updated 6 years ago
- Identify privilege escalation paths within and across different clouds☆701Updated last month