ThreatResponse / mad-king
Proof of Concept Zappa Based AWS Persistence and Attack Platform
☆37Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for mad-king
- Python module for evaluation of AWS account best practices around incident handling readieness.☆55Updated 4 years ago
- Core incident handling plugins for aws_ir cli, incident pony, and more.☆21Updated 6 years ago
- This command line tool counts the number of resources in different categories across Amazon regions.☆56Updated 4 years ago
- badbucket checks your s3 bucket for common misconfigurations☆23Updated 7 years ago
- AWS Metadata Proxy for protection against SSRF☆68Updated 4 years ago
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.☆62Updated 5 years ago
- ☆24Updated 5 years ago
- Exfiltrate files via DNS☆96Updated 11 years ago
- Overview about existing tools that can be useful for AWS auditing purposes.☆15Updated 7 years ago
- first commit☆20Updated last year
- This script is used to generate some basic detections of the aws security services☆71Updated 2 years ago
- A simple file-based scanner to look for potential AWS access and secret keys in files☆89Updated 8 months ago
- Manage GuardDuty At Enterprise Scale☆22Updated 4 years ago
- Updated incident response generator for training classes☆41Updated 3 years ago
- Content for 'JIRA Risk Project' book published at LeanPub☆56Updated 6 years ago
- Terraform module which provides easy to configure AWS environment for running automated security scanning solutions at scheduled interval…☆44Updated 5 years ago
- Things to know when DFIR occurs near a vault deployment.☆43Updated 6 years ago
- AppSecPipeline Specification for DevOps automation.☆38Updated last year
- Cloudformation Template and Lambda to detect if Instance Profile credentials are being used outside your AWS Account.☆28Updated 5 years ago
- Tools for AWS forensics☆64Updated 8 years ago
- Varna: Quick & Cheap AWS CloudTrail Monitoring with Event Query Language (EQL)☆51Updated last year
- ☆65Updated 7 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆74Updated 2 years ago
- Continuous Integration and Development ExploiteR☆84Updated last year
- Materials for the BSides NoVA/Charleston 2018 Bro Workshop☆14Updated last year
- A Lambda-powered Security Orchestration framework for AWS GuardDuty☆51Updated 4 years ago
- A tool for testing continuous integration (CI) or continuous delivery (CD) system security☆23Updated 11 years ago
- it-security related scripts and tools☆25Updated 5 years ago