RyanJarv / awesome-cloud-sec
Awesome list for cloud security related projects
☆79Updated 2 years ago
Alternatives and similar repositories for awesome-cloud-sec:
Users that are interested in awesome-cloud-sec are comparing it to the libraries listed below
- A tool to keep AWS pentests and red teams efficient, organized, and stealthy.☆90Updated 10 months ago
- Awesome curate list of cyber security penetration testing tools for Cloud Security mainly AWS/Azure/Google☆118Updated 3 years ago
- An AWS IAM policy statement parser and query tool.☆166Updated 11 months ago
- Resources to learn cloud environment and pentesting the same, contains AWS, Azure, Google Cloud☆50Updated 2 years ago
- GCP GOAT is the vulnerable application for learn the GCP Security☆63Updated last year
- This repo contains IOC, malware and malware analysis associated with Public cloud☆246Updated 2 months ago
- A curated list of cloud pentesting resource, contains AWS, Azure, Google Cloud☆98Updated 2 years ago
- Unauthenticated enumeration of AWS, Azure, and GCP Principals☆210Updated 2 months ago
- Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.�☆164Updated 2 months ago
- Damn Vulnerable Cloud Application☆190Updated 6 years ago
- Vulnerability scanner for AWS customer managed policies using ChatGPT☆143Updated last year
- This Repo serves as a collection of shared security and penetration testing resources for the cloud.☆251Updated 5 months ago
- ☆169Updated last year
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆97Updated 2 months ago
- IAMFinder enumerates and finds users and IAM roles in a target AWS account.☆109Updated 4 years ago
- GCPGoat : A Damn Vulnerable GCP Infrastructure☆365Updated 2 months ago
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆88Updated last year
- ☆133Updated last year
- KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.☆97Updated last year
- Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints☆113Updated last year
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆132Updated 2 weeks ago
- find dangling domains in a multi cloud environment☆136Updated last week
- My personal collection of resources (mostly tools and training materials) for source code security audits.☆59Updated 4 months ago
- Playing around with Stratus Red Team (Cloud Attack simulation tool) and SumoLogic☆284Updated 2 years ago
- MetaHub is an automated contextual security findings enrichment and impact evaluation tool for vulnerability management.☆165Updated this week
- Blogpost series showcasing interesting cloud - web app security bugs☆47Updated last year
- Pentesting lab with a Kali Linux instance accessible via ssh & wireguard VPN and with vulnerable instances in a private subnet☆188Updated 6 months ago
- This is a companion to the Security Engineer Questions☆201Updated last year
- ☆110Updated last year