Alternatives and similar repositories for pacu:

Users that are interested in pacu are comparing it to the libraries listed below

• RhinoSecurityLabs / cloudgoat
  CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
  ☆3,129Updated this week
• nccgroup / ScoutSuite
  Multi-Cloud Security Auditing Tool
  ☆7,018Updated 4 months ago
• BishopFox / cloudfox
  Automating situational awareness for cloud penetration tests.
  ☆2,053Updated last week
• aquasecurity / cloudsploit
  Cloud Security Posture Management (CSPM)
  ☆3,461Updated 3 weeks ago
• sa7mon / S3Scanner
  Scan for misconfigured S3 buckets across S3-compatible APIs!
  ☆2,710Updated this week
• dafthack / CloudPentestCheatsheets
  This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage clou…
  ☆2,660Updated 6 months ago
• nccgroup / PMapper
  A tool for quickly evaluating IAM permissions in AWS.
  ☆1,464Updated 7 months ago
• toniblyx / my-arsenal-of-aws-security-tools
  List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
  ☆9,120Updated 4 months ago
• initstring / cloud_enum
  Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
  ☆1,769Updated 5 months ago
• dagrz / aws_pwn
  A collection of AWS penetration testing junk
  ☆1,190Updated last year
• WithSecureLabs / awspx
  A graph-based tool for visualizing effective access and resource relationships in AWS environments.
  ☆937Updated 2 years ago
• jordanpotti / AWSBucketDump
  Security Tool to Look For Interesting Files in S3 Buckets
  ☆1,393Updated 11 months ago
• michenriksen / aquatone
  A Tool for Domain Flyovers
  ☆5,734Updated 2 years ago
• RhinoSecurityLabs / AWS-IAM-Privilege-Escalation
  A centralized source of all AWS IAM privilege escalation methods released by Rhino Security Labs.
  ☆907Updated 5 years ago
• EdOverflow / can-i-take-over-xyz
  "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
  ☆5,073Updated last month
• snoopysecurity / awesome-burp-extensions
  A curated list of amazingly awesome Burp Extensions
  ☆3,101Updated last month
• ine-labs / AWSGoat
  AWSGoat : A Damn Vulnerable AWS Infrastructure
  ☆1,813Updated last month
• s0md3v / Arjun
  HTTP parameter discovery suite.
  ☆5,520Updated last month
• DataDog / stratus-red-team
  Granular, Actionable Adversary Emulation for the Cloud
  ☆1,957Updated this week
• andresriancho / enumerate-iam
  Enumerate the permissions associated with AWS credential set
  ☆1,137Updated last year
• nccgroup / sadcloud
  A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure
  ☆686Updated last year
• assetnote / kiterunner
  Contextual Content Discovery Tool
  ☆2,776Updated 10 months ago
• its-a-feature / Mythic
  A collaborative, multi-platform, red teaming framework
  ☆3,506Updated this week
• salesforce / cloudsplaining
  Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…
  ☆2,054Updated 3 weeks ago
• gquere / pwn_jenkins
  Notes about attacking Jenkins servers
  ☆2,036Updated 8 months ago
• archerysec / archerysec
  ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.
  ☆2,323Updated 5 months ago
• BishopFox / sliver
  Adversary Emulation Framework
  ☆9,063Updated this week
• RedSiege / EyeWitness
  EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
  ☆5,212Updated 5 months ago
• carnal0wnage / weirdAAL
  WeirdAAL (AWS Attack Library)
  ☆797Updated 2 months ago
• infobyte / faraday
  Open Source Vulnerability Management Platform
  ☆5,300Updated last week