RhinoSecurityLabs / pacu

Related projects ⓘ

Alternatives and complementary repositories for pacu

• RhinoSecurityLabs / cloudgoat
  CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
  ☆2,974Updated last week
• nccgroup / ScoutSuite
  Multi-Cloud Security Auditing Tool
  ☆6,740Updated last month
• BishopFox / cloudfox
  Automating situational awareness for cloud penetration tests.
  ☆1,955Updated last month
• toniblyx / my-arsenal-of-aws-security-tools
  List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
  ☆8,978Updated 3 weeks ago
• aquasecurity / cloudsploit
  Cloud Security Posture Management (CSPM)
  ☆3,358Updated this week
• sa7mon / S3Scanner
  Scan for misconfigured S3 buckets across S3-compatible APIs!
  ☆2,573Updated this week
• Hacking-the-Cloud / hackingthe.cloud
  An encyclopedia for offensive and defensive security knowledge in cloud native technologies.
  ☆1,729Updated this week
• dafthack / CloudPentestCheatsheets
  This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage clou…
  ☆2,574Updated 2 months ago
• nccgroup / PMapper
  A tool for quickly evaluating IAM permissions in AWS.
  ☆1,433Updated 3 months ago
• DataDog / stratus-red-team
  Granular, Actionable Adversary Emulation for the Cloud
  ☆1,829Updated last week
• dagrz / aws_pwn
  A collection of AWS penetration testing junk
  ☆1,173Updated last year
• RhinoSecurityLabs / AWS-IAM-Privilege-Escalation
  A centralized source of all AWS IAM privilege escalation methods released by Rhino Security Labs.
  ☆897Updated 5 years ago
• RhinoSecurityLabs / Security-Research
  Exploits written by the Rhino Security Labs team
  ☆1,059Updated 3 years ago
• archerysec / archerysec
  ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.
  ☆2,295Updated last month
• infobyte / faraday
  Open Source Vulnerability Management Platform
  ☆5,048Updated 3 weeks ago
• bluscreenofjeff / Red-Team-Infrastructure-Wiki
  Wiki to collect Red Team infrastructure hardening resources
  ☆4,152Updated 7 months ago
• WithSecureLabs / awspx
  A graph-based tool for visualizing effective access and resource relationships in AWS environments.
  ☆922Updated 2 years ago
• outflanknl / RedELK
  Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term o…
  ☆2,384Updated 2 months ago
• initstring / cloud_enum
  Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
  ☆1,686Updated last month
• gquere / pwn_jenkins
  Notes about attacking Jenkins servers
  ☆1,966Updated 4 months ago
• carnal0wnage / weirdAAL
  WeirdAAL (AWS Attack Library)
  ☆781Updated last year
• darkoperator / dnsrecon
  DNS Enumeration Script
  ☆2,641Updated this week
• ine-labs / AWSGoat
  AWSGoat : A Damn Vulnerable AWS Infrastructure
  ☆1,748Updated 3 weeks ago
• mitre / caldera
  Automated Adversary Emulation Platform
  ☆5,660Updated this week
• pry0cc / axiom
  The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, f…
  ☆4,057Updated last month
• jordanpotti / AWSBucketDump
  Security Tool to Look For Interesting Files in S3 Buckets
  ☆1,366Updated 7 months ago
• nccgroup / sadcloud
  A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure
  ☆658Updated last year
• redcanaryco / atomic-red-team
  Small and highly portable detection tests based on MITRE's ATT&CK.
  ☆9,791Updated this week
• salesforce / cloudsplaining
  Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…
  ☆2,000Updated this week
• snoopysecurity / awesome-burp-extensions
  A curated list of amazingly awesome Burp Extensions
  ☆3,000Updated this week