Voulnet / barq
barq: The AWS Cloud Post Exploitation framework!
☆387Updated 2 years ago
Alternatives and similar repositories for barq:
Users that are interested in barq are comparing it to the libraries listed below
- Tools for fingerprinting and exploiting Amazon cloud infrastructures☆468Updated 2 years ago
- A tool for identifying misconfigured CloudFront domains☆351Updated 4 years ago
- Cloud-related research releases from the Rhino Security Labs team.☆384Updated 4 years ago
- Exploits written by the Rhino Security Labs team☆1,071Updated 4 years ago
- WeirdAAL (AWS Attack Library)☆798Updated 3 months ago
- for AWS Security material☆247Updated 3 years ago
- Search exposed EBS volumes for secrets☆297Updated last year
- A simple file-based scanner to look for potential AWS access and secret keys in files☆91Updated last year
- Security aspects of AWS products for the Security Specialist certification☆211Updated 2 years ago
- Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Applica…☆481Updated 6 years ago
- A collection of AWS penetration testing junk☆1,190Updated last year
- Amazon bucket brute force tool☆99Updated 11 years ago
- AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.☆248Updated 3 years ago
- A centralized source of all AWS IAM privilege escalation methods released by Rhino Security Labs.☆909Updated 5 years ago
- Google Cloud Platform Security Tool☆234Updated 5 years ago
- Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.☆620Updated 5 years ago
- Red Team Scripts for AWS.☆168Updated 4 years ago
- A collection of useful Serverless functions I use when pentesting☆382Updated 2 years ago
- This is an offensive guide to securing AWS infrastructures. The hope is that by knowing how to take advantage of various types of AWS wea…☆171Updated 6 years ago
- Find cloud assets that no one wants exposed 🔎 ☁️☆339Updated 4 years ago
- A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.☆514Updated last year
- Resource types that can be publicly exposed on AWS☆324Updated 3 years ago
- A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.☆559Updated 2 years ago
- Route53/CloudFront Vulnerability Assessment Utility☆85Updated last year
- ☆274Updated 3 years ago
- Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.☆247Updated this week
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆134Updated 4 years ago
- A tool to enumerate S3 buckets manually or via certstream☆82Updated last year
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.☆64Updated 5 years ago
- Feed the tool a .nessus file and it will automatically get you MSF shell☆235Updated 2 years ago