WithSecureLabs / leonidas

Related projects ⓘ

Alternatives and complementary repositories for leonidas

• pumasecurity / serverless-prey
  Serverless Functions for establishing Reverse Shells to Lambda, Azure Functions, and Google Cloud Functions
  ☆235Updated last month
• RhinoSecurityLabs / ccat
  Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.
  ☆591Updated 5 years ago
• sbasu7241 / AWS-Threat-Simulation-and-Detection
  Playing around with Stratus Red Team (Cloud Attack simulation tool) and SumoLogic
  ☆282Updated last year
• nccgroup / sadcloud
  A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure
  ☆658Updated last year
• BishopFox / iam-vulnerable
  Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
  ☆480Updated 9 months ago
• RhinoSecurityLabs / Cloud-Security-Research
  Cloud-related research releases from the Rhino Security Labs team.
  ☆356Updated 4 years ago
• OpenCSPM / opencspm
  Open Cloud Security Posture Management Engine
  ☆334Updated 2 years ago
• elastic / dorothy
  Dorothy is a tool to test security monitoring and detection for Okta environments
  ☆175Updated 3 months ago
• appsecco / attacking-cloudgoat2
  A step-by-step walkthrough of CloudGoat 2.0 scenarios.
  ☆133Updated 4 years ago
• easttimor / aws-incident-response
  ☆363Updated 8 months ago
• amrandazz / attack-guardduty-navigator
  A MITRE ATT&CK Navigator export for AWS GuardDuty Findings
  ☆136Updated 3 years ago
• 0x4D31 / detection-and-response-pipeline
  ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …
  ☆258Updated 9 months ago
• RhinoSecurityLabs / GCP-IAM-Privilege-Escalation
  A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.
  ☆343Updated 7 months ago
• awslabs / aws-automated-incident-response-and-forensics
  ☆376Updated last year
• BishopFox / smogcloud
  Find cloud assets that no one wants exposed 🔎 ☁️
  ☆332Updated 4 years ago
• prisma-cloud / IAMFinder
  IAMFinder enumerates and finds users and IAM roles in a target AWS account.
  ☆109Updated 4 years ago
• DataDog / threatest
  Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
  ☆319Updated 11 months ago
• iknowjason / AriaCloud
  A Docker container for remote penetration testing.
  ☆133Updated 3 years ago
• center-for-threat-informed-defense / security-stack-mappings
  🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…
  ☆380Updated 7 months ago
• jatrost / awesome-detection-rules
  This is a collection of threat detection rules / rules engines that I have come across.
  ☆275Updated 6 months ago
• unknownhad / CloudIntel
  This repo contains IOC, malware and malware analysis associated with Public cloud
  ☆244Updated last week
• SygniaLabs / security-cloud-scout
  ☆133Updated last year
• ihamburglar / Redboto
  Red Team Scripts for AWS.
  ☆166Updated 4 years ago
• iknowjason / edge
  Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.
  ☆159Updated 3 weeks ago
• openraven / magpie
  A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …
  ☆175Updated 2 months ago
• cloud-sniper / cloud-sniper
  Cloud Security Operations Orchestrator
  ☆182Updated 7 months ago
• tenable / KaiMonkey
  KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.
  ☆96Updated 11 months ago
• dxa4481 / gcploit
  These are tools we released with our 2020 defcon/blackhat talk https://www.youtube.com/watch?v=Ml09R38jpok
  ☆165Updated last year
• XMCyber / XMGoat
  ☆170Updated last year
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆75Updated 2 months ago