Alternatives and similar repositories for IAMActionHunter

Users that are interested in IAMActionHunter are comparing it to the libraries listed below

• aquia-inc / scpkit

  View on GitHub
  SCP management tool
  ☆135Oct 23, 2023Updated 2 years ago
• primeharbor / sensitive_iam_actions

  View on GitHub
  Crowdsourced list of sensitive IAM Actions
  ☆159Oct 29, 2024Updated last year
• VirtueSecurity / IAMhounddog

  View on GitHub
  A tool to help pentesters quickly identify privileged principals and second-order privilege escalation opportunities in unfamiliar AWS ac…
  ☆142Nov 14, 2025Updated 2 months ago
• righteousgambit / quiet-riot

  View on GitHub
  Unauthenticated enumeration of AWS, Azure, and GCP Principals
  ☆282Nov 27, 2025Updated 2 months ago
• tenable / cnappgoat-scenarios

  View on GitHub
  This repository provides a comprehensive collection of Pulumi scenarios utilized by cnappgoat
  ☆21Jan 28, 2025Updated last year
• adanalvarez / TrailDiscover

  View on GitHub
  An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…
  ☆172Updated this week
• SecurityRunners / cloud-exposure-catalog

  View on GitHub
  A catalog of services that can be publicly exposed within different cloud providers.
  ☆14Aug 30, 2024Updated last year
• saw-your-packet / CloudShovel

  View on GitHub
  A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…
  ☆113Nov 13, 2024Updated last year
• DataDog / pathfinding.cloud

  View on GitHub
  An AWS IAM Privilege Escalation Path Library
  ☆116Feb 2, 2026Updated last week
• ReversecLabs / leonidas

  View on GitHub
  Automated Attack Simulation in the Cloud, complete with detection use cases.
  ☆602Nov 28, 2024Updated last year
• BishopFox / cloudfox

  View on GitHub
  Automating situational awareness for cloud penetration tests.
  ☆2,289Feb 5, 2026Updated last week
• BishopFox / iam-vulnerable

  View on GitHub
  Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
  ☆544Sep 11, 2025Updated 5 months ago
• adanalvarez / TrailAlerts

  View on GitHub
  TrailAlerts is a AWS-native, serverless cloud-detection tool that lets you define simple rules as code and get rich alerts about events i…
  ☆51Nov 9, 2025Updated 3 months ago
• hotnops / apeman

  View on GitHub
  AWS Attack Path Management Tool - Walking on the Moon
  ☆260Dec 5, 2024Updated last year
• tenable / cnappgoat

  View on GitHub
  CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.
  ☆293Sep 4, 2024Updated last year
• ReversecLabs / awspx

  View on GitHub
  A graph-based tool for visualizing effective access and resource relationships in AWS environments.
  ☆995Oct 4, 2022Updated 3 years ago
• nccgroup / PMapper

  View on GitHub
  A tool for quickly evaluating IAM permissions in AWS.
  ☆1,539Aug 2, 2024Updated last year
• zmallen / cloudtrail2sightings

  View on GitHub
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆82Jul 25, 2022Updated 3 years ago
• fwdcloudsec / known_aws_accounts

  View on GitHub
  List of known AWS accounts
  ☆252Feb 6, 2026Updated last week
• 0x4D31 / detection-and-response-pipeline

  View on GitHub
  ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …
  ☆288Feb 5, 2024Updated 2 years ago
• Permiso-io-tools / SkyScalpel

  View on GitHub
  ☆46Nov 7, 2024Updated last year
• christophetd / aws-sso-device-code-authentication

  View on GitHub
  ☆37Jun 9, 2021Updated 4 years ago
• tenable / EscalateGPT

  View on GitHub
  An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.
  ☆117Feb 4, 2026Updated last week
• salesforce / cloudsplaining

  View on GitHub
  Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…
  ☆2,180Updated this week
• SummitRoute / aws_exposable_resources

  View on GitHub
  Resource types that can be publicly exposed on AWS
  ☆329Feb 23, 2022Updated 3 years ago
• RhinoSecurityLabs / cloudgoat

  View on GitHub
  CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
  ☆3,475Updated this week
• caizencloud / caizen

  View on GitHub
  Harness the security superpowers of your cloud asset inventory
  ☆11Sep 22, 2024Updated last year
• stephenbradshaw / aws_url_signer

  View on GitHub
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆59Sep 20, 2023Updated 2 years ago
• awslabs / aws-security-assessment-solution

  View on GitHub
  An AWS tool to help you create a point in time assessment of your AWS account using Prowler.
  ☆588Nov 12, 2025Updated 3 months ago
• cyberark / SkyArk

  View on GitHub
  SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS
  ☆905Dec 17, 2024Updated last year
• zoph-io / subnet-watcher

  View on GitHub
  AWS VPC Subnets Watcher
  ☆79Aug 23, 2023Updated 2 years ago
• BishopFox / cloudfoxable

  View on GitHub
  Create your own vulnerable by design AWS penetration testing playground
  ☆433Feb 6, 2026Updated last week
• primeharbor / breaches.cloud

  View on GitHub
  https://breaches.cloud
  ☆42Oct 16, 2024Updated last year
• tenchi-security / camp

  View on GitHub
  CloudSplaining on AWS Managed Policies
  ☆44Sep 8, 2025Updated 5 months ago
• vectra-ai-research / derf

  View on GitHub
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆101Jan 12, 2024Updated 2 years ago
• ReversecLabs / IAMSpy

  View on GitHub
  ☆228Jan 29, 2026Updated 2 weeks ago
• AbstractClass / CloudPrivs

  View on GitHub
  Determine privileges from cloud credentials via brute-force testing.
  ☆68Aug 22, 2024Updated last year
• PaloAltoNetworks / IAM-Deescalate

  View on GitHub
  IAM-Deescalate helps mitigate privilege escalation risk in AWS identity and access management (IAM)
  ☆98Sep 14, 2022Updated 3 years ago
• DataDog / stratus-red-team

  View on GitHub
  Granular, Actionable Adversary Emulation for the Cloud
  ☆2,252Feb 6, 2026Updated last week