Unauthenticated enumeration of AWS IAM Roles.
☆28Apr 18, 2026Updated last month
Alternatives and similar repositories for roles
Users that are interested in roles are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- An IAM Simulator that outputs detailed explains of how a request was evaluated.☆102May 16, 2026Updated last week
- Official code for the paper entitled "Toward Intelligent and Secure Cloud: Large Language Model Empowered Proactive Defense"☆16Apr 10, 2025Updated last year
- ☆18Jul 30, 2024Updated last year
- Addon for BHCE☆57Apr 1, 2025Updated last year
- A multifaceted security tool which leverages Public GitHub REST APIs for OSINT, Forensics, Pentesting and more.☆181Jan 9, 2026Updated 4 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆40Aug 2, 2024Updated last year
- ☆18Feb 2, 2026Updated 3 months ago
- Autonomous AI C2☆33Jul 23, 2024Updated last year
- Hijack a slack bot to phish your way in☆57Jul 17, 2025Updated 10 months ago
- Attaché provides an emulation layer for Cloud Provider IMDS APIs☆59May 8, 2026Updated 2 weeks ago
- A security tool that detects malicious packages from external vulnerability feeds and searches for them in your package registries or art…☆69Nov 27, 2025Updated 5 months ago
- Find what egress ports are allowed☆47Nov 19, 2025Updated 6 months ago
- Caterpillar is a security scanning library for AI agent skill files (e.g., Claude Code skills) for dangerous or malicious behavior☆60Feb 16, 2026Updated 3 months ago
- AuditForge is a pentest reporting application making it simple and easy to write your findings and generate a customizable report.☆78Sep 1, 2025Updated 8 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Mapping of open-source detection rules and atomic tests.☆211Feb 16, 2026Updated 3 months ago
- ☆72Oct 24, 2025Updated 7 months ago
- Burp Suite extension for testing Passkey systems.☆75Apr 1, 2025Updated last year
- Web Server Vulnerability Scanning Tool☆37Mar 11, 2025Updated last year
- Semgrep-based Policy Controller for Kubernetes☆47Apr 4, 2025Updated last year
- 🔑 A simple static password generator.☆10Apr 16, 2026Updated last month
- Finders Keypers: AWS KMS Encryption Key Usage and Blast Radius Finder☆48Aug 13, 2025Updated 9 months ago
- ☆46Nov 7, 2024Updated last year
- Convert cloudtrail data to MITRE ATT&CK Sightings☆82Jul 25, 2022Updated 3 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Burp Extension for AWS Signing☆92Jan 10, 2025Updated last year
- yams is a Go library, server, and CLI providing foundational capabilities to simulate access for AWS IAM policies☆36Apr 29, 2026Updated 3 weeks ago
- SprayShark is a modular G-Suite password sprayer with threading!☆59May 17, 2025Updated last year
- WAF Exploitation Framework☆13Aug 25, 2023Updated 2 years ago
- Collection of all previous 1337UP CTF challenges.☆79Jan 6, 2025Updated last year
- ## Auto-archived due to inactivity. ## Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Securit…☆36Oct 17, 2024Updated last year
- Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…☆298May 18, 2026Updated last week
- Collection of Semgrep rules for security analysis☆10Mar 30, 2024Updated 2 years ago
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.☆63Jan 25, 2025Updated last year
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- A library for intercepting system calls☆103Jan 5, 2025Updated last year
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…☆30Nov 30, 2025Updated 5 months ago
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆142Jan 2, 2025Updated last year
- Rules shared by the community from 100 Days of YARA 2025☆38Jan 2, 2026Updated 4 months ago
- Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guide☆43Dec 16, 2024Updated last year
- A CLI tool (and library) written in Go to simplify the process of retrieving IP addresses from infrastructure hosted on Google Cloud Plat…☆11Apr 28, 2026Updated 3 weeks ago
- HashiCorp-relevant rules for the Semgrep code analysis tool☆41Oct 3, 2023Updated 2 years ago