agnivesh / endgameLinks
An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share the resources with the entire internet π
β273Updated 4 years ago
Alternatives and similar repositories for endgame
Users that are interested in endgame are comparing it to the libraries listed below
Sorting:
- A honey token manager and alert system for AWS.β321Updated 4 years ago
- Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.β553Updated 6 months ago
- AWS Security Tools (AST) in a simple Docker container.β285Updated 4 years ago
- rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, β¦β162Updated 4 years ago
- Red Team Scripts for AWS.β170Updated 5 years ago
- AWS Identity and Access Management Visualizer and Anomaly Finderβ298Updated last year
- Resource types that can be publicly exposed on AWSβ329Updated 3 years ago
- Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).β143Updated 8 months ago
- AWSXenos will list all the trust relationships in all the IAM roles, S3 buckets, and moreβ64Updated 10 months ago
- Scan publicly accessible assets on your AWS cloud environmentβ136Updated last month
- Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frameβ¦β223Updated 2 years ago
- Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)β447Updated 2 years ago
- Access Undenied parses AWS AccessDenied CloudTrail events, explains the reasons for them, and offers actionable remediation steps. Open-sβ¦β265Updated 2 years ago
- Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe β¦β409Updated last month
- A production-friendly malware scanner for your AWS cloudβ200Updated 4 years ago
- OWASP Domain Protect - prevent subdomain takeoverβ397Updated last year
- Repository demonstrating the Capital One breach on your AWS accountβ244Updated 4 years ago
- Identity & Access Management simplified and secure.β259Updated 2 years ago
- AWS Inventory and Compliance Frameworkβ224Updated 2 years ago
- Monitor AWS Managed IAM Policies Changesβ492Updated this week
- sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.β81Updated 4 years ago
- An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share thβ¦β206Updated 4 years ago
- A graph-based tool for visualizing effective access and resource relationships in AWS environments.β988Updated 3 years ago
- Fetch all public IP addresses tied to your AWS account. Works with IPv4/IPv6, Classic/VPC networking, and across all AWS servicesβ640Updated 4 years ago
- Scans your AWS cloud resources and generates reports. Check out free hosted version:β281Updated 5 years ago
- IAM-Deescalate helps mitigate privilege escalation risk in AWS identity and access management (IAM)β98Updated 3 years ago
- β227Updated 4 months ago
- CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.β904Updated 4 years ago
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.β64Updated 6 years ago
- Open Cloud Security Posture Management Engineβ342Updated 3 years ago