WithSecureLabs / leonidas
Automated Attack Simulation in the Cloud, complete with detection use cases.
☆567Updated 5 months ago
Alternatives and similar repositories for leonidas:
Users that are interested in leonidas are comparing it to the libraries listed below
- Playing around with Stratus Red Team (Cloud Attack simulation tool) and SumoLogic☆296Updated 2 years ago
- Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.☆623Updated 5 years ago
- ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …☆276Updated last year
- A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure☆699Updated last year
- Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.☆499Updated last year
- Serverless Functions for establishing Reverse Shells to Lambda, Azure Functions, and Google Cloud Functions☆244Updated 2 months ago
- Threatest is a CLI and Go framework for end-to-end testing threat detection rules.☆329Updated last week
- Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.☆166Updated 6 months ago
- This repo contains IOC, malware and malware analysis associated with Public cloud☆249Updated 5 months ago
- ☆386Updated last year
- This is a collection of threat detection rules / rules engines that I have come across.☆287Updated last year
- Cloud-related research releases from the Rhino Security Labs team.☆386Updated 5 years ago
- Dorothy is a tool to test security monitoring and detection for Okta environments☆182Updated 9 months ago
- A graph-based tool for visualizing effective access and resource relationships in AWS environments.☆949Updated 2 years ago
- ☆371Updated last year
- Documenting your Threat Models with HCL☆426Updated this week
- A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.☆381Updated last year
- Unauthenticated enumeration of AWS, Azure, and GCP Principals☆229Updated 5 months ago
- 🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…☆386Updated last year
- ☆173Updated 2 years ago
- Open Cloud Security Posture Management Engine☆338Updated 3 years ago
- WeirdAAL (AWS Attack Library)☆804Updated 3 months ago
- A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …☆186Updated 8 months ago
- The Open-Source AWS Cyber Range☆487Updated 4 years ago
- A little tool to play with Azure Identity - Azure and Entra ID lab creation tool. Blog: https://medium.com/@iknowjason/sentinel-for-pur…☆570Updated last month
- Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…☆245Updated last month
- Atomic Purple Team Framework and Lifecycle☆294Updated 4 years ago
- A MITRE ATT&CK Navigator export for AWS GuardDuty Findings☆137Updated 3 years ago
- A Docker container for remote penetration testing.☆135Updated 4 years ago
- Find cloud assets that no one wants exposed 🔎 ☁️☆344Updated 4 years ago