RhinoSecurityLabs / Security-Research

Related projects ⓘ

Alternatives and complementary repositories for Security-Research

• carnal0wnage / weirdAAL
  WeirdAAL (AWS Attack Library)
  ☆781Updated last year
• dagrz / aws_pwn
  A collection of AWS penetration testing junk
  ☆1,173Updated last year
• RhinoSecurityLabs / AWS-IAM-Privilege-Escalation
  A centralized source of all AWS IAM privilege escalation methods released by Rhino Security Labs.
  ☆897Updated 5 years ago
• RhinoSecurityLabs / Cloud-Security-Research
  Cloud-related research releases from the Rhino Security Labs team.
  ☆356Updated 4 years ago
• andresriancho / nimbostratus
  Tools for fingerprinting and exploiting Amazon cloud infrastructures
  ☆447Updated 2 years ago
• jordanpotti / AWSBucketDump
  Security Tool to Look For Interesting Files in S3 Buckets
  ☆1,366Updated 7 months ago
• Voulnet / barq
  barq: The AWS Cloud Post Exploitation framework!
  ☆386Updated 2 years ago
• MindPointGroup / cloudfrunt
  A tool for identifying misconfigured CloudFront domains
  ☆346Updated 4 years ago
• RhinoSecurityLabs / ccat
  Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.
  ☆591Updated 5 years ago
• RhinoSecurityLabs / GCPBucketBrute
  A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.
  ☆483Updated last year
• WithSecureLabs / awspx
  A graph-based tool for visualizing effective access and resource relationships in AWS environments.
  ☆922Updated 2 years ago
• andresriancho / enumerate-iam
  Enumerate the permissions associated with AWS credential set
  ☆1,098Updated 9 months ago
• sa7mon / S3Scanner
  Scan for misconfigured S3 buckets across S3-compatible APIs!
  ☆2,573Updated this week
• OWASP / DVSA
  a Damn Vulnerable Serverless Application
  ☆534Updated last year
• stuhirst / awssecurity
  for AWS Security material
  ☆246Updated 2 years ago
• RhinoSecurityLabs / pacu
  The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
  ☆4,399Updated this week
• nccgroup / sadcloud
  A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure
  ☆658Updated last year
• anshumanbh / git-all-secrets
  A tool to capture all the git secrets by leveraging multiple open source git searching tools
  ☆1,112Updated 5 years ago
• sneakerhax / TTPs
  Red Team Tactics, Techniques, and Procedures
  ☆394Updated 3 weeks ago
• 0x4D31 / burpa
  Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Applica…
  ☆481Updated 6 years ago
• SerpicoProject / Serpico
  SimplE RePort wrIting and COllaboration tool
  ☆1,093Updated 4 years ago
• ustayready / CredKing
  Password spraying using AWS Lambda for IP rotation
  ☆578Updated last year
• magoo / redteam-plan
  Issues to consider when planning a red team exercise.
  ☆611Updated 7 years ago
• securing / DumpsterDiver
  Tool to search secrets in various filetypes.
  ☆977Updated last year
• nccgroup / tracy
  A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.
  ☆553Updated last year
• emtunc / SlackPirate
  Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace
  ☆729Updated 3 years ago
• ztgrace / changeme
  A default credential scanner.
  ☆1,451Updated 2 years ago
• nccgroup / PMapper
  A tool for quickly evaluating IAM permissions in AWS.
  ☆1,433Updated 3 months ago
• vmware / burp-rest-api
  REST/JSON API to the Burp Suite security tool.
  ☆547Updated 5 months ago