SummitRoute/csp_security_mistakes external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

SummitRoute/csp_security_mistakes

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/SummitRoute/csp_security_mistakes)

Close

SummitRoute / csp_security_mistakesView on GitHubMore

• External links
• Readme badge

This repo has been replaced by https://www.cloudvulndb.org

☆726Jun 29, 2022Updated 3 years ago

Alternatives and similar repositories for csp_security_mistakes

Users that are interested in csp_security_mistakes are comparing it to the libraries listed below

• SummitRoute / aws_exposable_resources

  View on GitHub
  Resource types that can be publicly exposed on AWS
  ☆331Feb 23, 2022Updated 4 years ago
• ramimac / aws-customer-security-incidents

  View on GitHub
  A repository of breaches of AWS customers
  ☆795Jan 24, 2026Updated last month
• aidansteele / cloudkey

  View on GitHub
  No need for IAM users when we have Yubikeys
  ☆158Apr 7, 2022Updated 3 years ago
• salesforce / cloudsplaining

  View on GitHub
  Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…
  ☆2,184Feb 20, 2026Updated last week
• wiz-sec-public / cloud-middleware-dataset

  View on GitHub
  ☆246Jul 9, 2024Updated last year
• zoph-io / MAMIP

  View on GitHub
  Monitor AWS Managed IAM Policies Changes
  ☆493Updated this week
• DataDog / stratus-red-team

  View on GitHub
  Granular, Actionable Adversary Emulation for the Cloud
  ☆2,266Feb 13, 2026Updated 2 weeks ago
• salesforce / metabadger

  View on GitHub
  Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
  ☆144May 1, 2025Updated 10 months ago
• nccgroup / PMapper

  View on GitHub
  A tool for quickly evaluating IAM permissions in AWS.
  ☆1,541Aug 2, 2024Updated last year
• ReversecLabs / IAMSpy

  View on GitHub
  ☆229Updated this week
• awslabs / aws-cloudsaga

  View on GitHub
  AWS CloudSaga - Simulate security events in AWS
  ☆473Updated this week
• salesforce / aws-allowlister

  View on GitHub
  Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frame…
  ☆224Aug 11, 2023Updated 2 years ago
• righteousgambit / quiet-riot

  View on GitHub
  Unauthenticated enumeration of AWS, Azure, and GCP Principals
  ☆283Nov 27, 2025Updated 3 months ago
• duo-labs / parliament

  View on GitHub
  AWS IAM linting library
  ☆1,109Jan 7, 2026Updated last month
• tenable / access-undenied-aws

  View on GitHub
  Access Undenied parses AWS AccessDenied CloudTrail events, explains the reasons for them, and offers actionable remediation steps. Open-s…
  ☆267Jan 26, 2023Updated 3 years ago
• ovotech / gitoops

  View on GitHub
  all paths lead to clouds
  ☆638Oct 11, 2023Updated 2 years ago
• CloudWanderer-io / PolicyGlass

  View on GitHub
  PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…
  ☆60Jan 9, 2022Updated 4 years ago
• ksoclabs / awesome-kubernetes-security

  View on GitHub
  A curated list of awesome Kubernetes security resources
  ☆954Dec 15, 2023Updated 2 years ago
• BishopFox / cloudfox

  View on GitHub
  Automating situational awareness for cloud penetration tests.
  ☆2,295Feb 21, 2026Updated last week
• jdyke / gcp-iam-analyzer

  View on GitHub
  Compares and analyzes GCP IAM roles.
  ☆78Mar 9, 2025Updated 11 months ago
• RhinoSecurityLabs / pacu

  View on GitHub
  The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
  ☆5,073Updated this week
• ReversecLabs / leonidas

  View on GitHub
  Automated Attack Simulation in the Cloud, complete with detection use cases.
  ☆606Nov 28, 2024Updated last year
• OpenCSPM / opencspm

  View on GitHub
  Open Cloud Security Posture Management Engine
  ☆344Feb 19, 2022Updated 4 years ago
• SummitRoute / imdsv2_wall_of_shame

  View on GitHub
  List of vendors that do not allow IMDSv2 enforcement
  ☆143May 3, 2024Updated last year
• Puliczek / awesome-list-of-secrets-in-environment-variables

  View on GitHub
  🦄🔒 Awesome list of secrets in environment variables 🖥️
  ☆901Sep 21, 2022Updated 3 years ago
• easttimor / aws-incident-response

  View on GitHub
  ☆374Feb 23, 2024Updated 2 years ago
• primeharbor / sensitive_iam_actions

  View on GitHub
  Crowdsourced list of sensitive IAM Actions
  ☆159Oct 29, 2024Updated last year
• ReversecLabs / awspx

  View on GitHub
  A graph-based tool for visualizing effective access and resource relationships in AWS environments.
  ☆994Oct 4, 2022Updated 3 years ago
• projectdiscovery / cloudlist

  View on GitHub
  Cloudlist is a tool for listing Assets from multiple Cloud Providers.
  ☆1,005Feb 16, 2026Updated 2 weeks ago
• wiz-sec / open-cvdb

  View on GitHub
  An open project to list all publicly known cloud vulnerabilities and CSP security issues
  ☆374Sep 19, 2025Updated 5 months ago
• Hacking-the-Cloud / hackingthe.cloud

  View on GitHub
  An encyclopedia for offensive and defensive security knowledge in cloud native technologies.
  ☆2,528Feb 10, 2026Updated 2 weeks ago
• inguardians / peirates

  View on GitHub
  Peirates - Kubernetes Penetration Testing tool
  ☆1,424Jan 20, 2026Updated last month
• domain-protect / domain-protect

  View on GitHub
  OWASP Domain Protect - prevent subdomain takeover
  ☆399Dec 23, 2024Updated last year
• RhinoSecurityLabs / ccat

  View on GitHub
  Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.
  ☆646Nov 21, 2019Updated 6 years ago
• ncc-erik-steringer / Aerides

  View on GitHub
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Jan 18, 2022Updated 4 years ago
• RhinoSecurityLabs / cloudgoat

  View on GitHub
  CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
  ☆3,487Feb 12, 2026Updated 2 weeks ago
• DataDog / security-labs-pocs

  View on GitHub
  Proof of concept code for Datadog Security Labs referenced exploits.
  ☆449Feb 13, 2026Updated 2 weeks ago
• nccgroup / ScoutSuite

  View on GitHub
  Multi-Cloud Security Auditing Tool
  ☆7,551Sep 23, 2025Updated 5 months ago
• awslabs / aws-security-assessment-solution

  View on GitHub
  An AWS tool to help you create a point in time assessment of your AWS account using Prowler.
  ☆592Nov 12, 2025Updated 3 months ago