RhinoSecurityLabs / Security-Research
Exploits written by the Rhino Security Labs team
☆1,069Updated 4 years ago
Alternatives and similar repositories for Security-Research:
Users that are interested in Security-Research are comparing it to the libraries listed below
- WeirdAAL (AWS Attack Library)☆794Updated last month
- A collection of AWS penetration testing junk☆1,186Updated last year
- Tools for fingerprinting and exploiting Amazon cloud infrastructures☆455Updated 2 years ago
- A centralized source of all AWS IAM privilege escalation methods released by Rhino Security Labs.☆903Updated 5 years ago
- Security Tool to Look For Interesting Files in S3 Buckets☆1,386Updated 10 months ago
- Cloud-related research releases from the Rhino Security Labs team.☆377Updated 4 years ago
- barq: The AWS Cloud Post Exploitation framework!☆387Updated 2 years ago
- Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.☆615Updated 5 years ago
- A tool for identifying misconfigured CloudFront domains☆349Updated 4 years ago
- SimplE RePort wrIting and COllaboration tool☆1,094Updated 4 years ago
- A graph-based tool for visualizing effective access and resource relationships in AWS environments.☆935Updated 2 years ago
- Issues to consider when planning a red team exercise.☆614Updated 7 years ago
- Scan for misconfigured S3 buckets across S3-compatible APIs!☆2,669Updated this week
- A tool to capture all the git secrets by leveraging multiple open source git searching tools☆1,119Updated 5 years ago
- Tool to search secrets in various filetypes.☆999Updated last year
- A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.☆501Updated last year
- Automate creating resilient, disposable, secure and agile infrastructure for Red Teams.☆893Updated 3 years ago
- for AWS Security material☆246Updated 2 years ago
- Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Applica…☆481Updated 6 years ago
- Enumerate the permissions associated with AWS credential set☆1,130Updated last year
- Discover Your Attack Surface!☆1,374Updated 2 years ago
- Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.☆734Updated 2 years ago
- Multi Tool Subdomain Enumeration☆725Updated 3 years ago
- Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.☆1,149Updated 2 years ago
- a Damn Vulnerable Serverless Application☆534Updated last year
- A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure☆683Updated last year
- A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques☆716Updated 5 years ago
- Setup script for Regon-ng☆923Updated 4 years ago
- A private botnet using multiple cloud environments for pentesters and red teamers. - Built by the community during a hackathon at the WWH…☆616Updated 2 years ago
- A default credential scanner.☆1,466Updated 3 years ago