TinderSec/oidc-scanner-aws external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

TinderSec/oidc-scanner-aws

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/TinderSec/oidc-scanner-aws)

Close

TinderSec / oidc-scanner-awsView on GitHubMore

• External links
• Readme badge

☆49Mar 21, 2023Updated 3 years ago

Alternatives and similar repositories for oidc-scanner-aws

Users that are interested in oidc-scanner-aws are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Permiso-io-tools / LogLicker

  View on GitHub
  Tool for obfuscating and deobfuscating data.
  ☆77Mar 20, 2024Updated 2 years ago
• synacktiv / gh-hijack-runner

  View on GitHub
  A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.
  ☆29Oct 13, 2024Updated last year
• SecurityRunners / cloud-exposure-catalog

  View on GitHub
  A catalog of services that can be publicly exposed within different cloud providers.
  ☆14Aug 30, 2024Updated last year
• TinderSec / gh-workflow-auditor

  View on GitHub
  Script to audit GitHub Action Workflow files for potential vulnerabilities.
  ☆153Aug 28, 2024Updated last year
• GoogleCloudPlatform / assured-workloads-terraform

  View on GitHub
  ☆18Jul 30, 2024Updated last year
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• intruder-io / rebind-server

  View on GitHub
  A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers
  ☆19Jun 9, 2023Updated 2 years ago
• ReversecLabs / encap-attack

  View on GitHub
  Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.
  ☆23Aug 30, 2024Updated last year
• tenable / hidden-services-revealer

  View on GitHub
  ☆40Aug 2, 2024Updated last year
• PaloAltoNetworks / github-oidc-utils

  View on GitHub
  ☆36Apr 29, 2025Updated 11 months ago
• jtmelton / attack-surface-analyzer

  View on GitHub
  A tool for analyzing the attack surface of an application
  ☆19Mar 5, 2025Updated last year
• silascutler / dockerhoneypot-logs

  View on GitHub
  Collection of Docker honeypot logs from 2021 - 2024
  ☆36Sep 30, 2024Updated last year
• aquia-inc / aws-guardduty-runbook-generator

  View on GitHub
  Generates runbooks for GuardDuty findings
  ☆38Jun 24, 2024Updated last year
• Outpost24 / outpost24-cors-check

  View on GitHub
  Additional active scan checks for BURP
  ☆28Oct 3, 2024Updated last year
• messypoutine / gravy-overflow

  View on GitHub
  A GitHub Actions Supply Chain CTF / Goat
  ☆27Jan 6, 2026Updated 3 months ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• nikitastupin / pwnhub

  View on GitHub
  How GitHub Actions workflows can be hacked
  ☆181Aug 23, 2024Updated last year
• sketchymoose / workslikeaJARM

  View on GitHub
  Method of finding interesting domains using keywords + JARMs
  ☆13Jan 30, 2023Updated 3 years ago
• stephenbradshaw / aws_url_signer

  View on GitHub
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆59Sep 20, 2023Updated 2 years ago
• aquia-inc / scpkit

  View on GitHub
  SCP management tool
  ☆136Oct 23, 2023Updated 2 years ago
• RyanJarv / roles

  View on GitHub
  Unauthenticated enumeration of AWS IAM Roles.
  ☆26Sep 7, 2025Updated 7 months ago
• omespino / gcs_instace_takeover

  View on GitHub
  ☆22Aug 3, 2024Updated last year
• welldone-cloud / aws-summarize-account-activity

  View on GitHub
  Analyzes CloudTrail data of a given AWS account and generates a summary of recently active IAM principals, API calls they made, as well a…
  ☆165Dec 21, 2025Updated 3 months ago
• chopinrlz / powerpass

  View on GitHub
  Store and retrieve encrypted secrets with PowerShell on Windows, Linux, or MacOS and also from KeePass 2 databases on Windows
  ☆34Mar 4, 2026Updated last month
• mbonig / rds-tools

  View on GitHub
  CDK constructs for working with RDS
  ☆18Oct 2, 2025Updated 6 months ago
• NordVPN Special Discount Offer • Ad
  Save on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
• awslabs / Chatbot-to-help-security-teams-perform-vulnerability-assessments

  View on GitHub
  ☆29Dec 26, 2025Updated 3 months ago
• 9rnt / poro

  View on GitHub
  Scan publicly accessible assets on your AWS cloud environment
  ☆136Jan 14, 2026Updated 2 months ago
• antitree / cmd_and_kubectl_demos

  View on GitHub
  ☆27Feb 19, 2026Updated last month
• NetSPI / AWSSigner

  View on GitHub
  Burp Extension for AWS Signing
  ☆92Jan 10, 2025Updated last year
• StevenSmiley / aws-mine

  View on GitHub
  AWS honey token manager
  ☆90Aug 1, 2024Updated last year
• GoogleCloudPlatform / active-assist

  View on GitHub
  ☆25Jun 27, 2024Updated last year
• kudelskisecurity / youshallnotpass

  View on GitHub
  YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.
  ☆37Jan 1, 2024Updated 2 years ago
• tuladhar / cleanup-aws-access-keys

  View on GitHub
  A cloud security tool to search and clean up unused AWS access keys, written in Go.
  ☆52Sep 2, 2022Updated 3 years ago
• step-security / github-actions-goat

  View on GitHub
  GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment
  ☆501Jun 27, 2025Updated 9 months ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• csdev / ezghsa

  View on GitHub
  EZGHSA is a command-line tool for summarizing and filtering vulnerability alerts on Github repositories.
  ☆36Jan 4, 2026Updated 3 months ago
• primeharbor / pht-awsbackup-management

  View on GitHub
  Scripts and IaC to create a ransomware resilient AWS Backup System
  ☆16Sep 5, 2023Updated 2 years ago
• kmcquade / OWASP-YouTube-2021

  View on GitHub
  Deliberately vulnerable AWS resources for security assessment demos
  ☆32Aug 20, 2022Updated 3 years ago
• elastic / SWAT

  View on GitHub
  ☆170Sep 30, 2025Updated 6 months ago
• kantega / kwashc

  View on GitHub
  Kantega Web Application Security Hero Challenge
  ☆19Dec 3, 2020Updated 5 years ago
• sametsahinnet / collectvars

  View on GitHub
  collectvars collects JavaScript variables, highlights risky ones, and helps you understand code structure, while you casually browse.
  ☆35Aug 28, 2024Updated last year
• cisco-foundation-ai / PEAK-Assistant

  View on GitHub
  An AI-backed threat hunting assistant that aligns to the PEAK framework.
  ☆37Jan 30, 2026Updated 2 months ago