agnivesh / endgame
An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share the resources with the entire internet π
β269Updated 3 years ago
Related projects β
Alternatives and complementary repositories for endgame
- A honey token manager and alert system for AWS.β316Updated 2 years ago
- AWS Security Tools (AST) in a simple Docker container.β285Updated 3 years ago
- Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.β529Updated 7 months ago
- rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, β¦β157Updated 3 years ago
- Red Team Scripts for AWS.β166Updated 4 years ago
- Resource types that can be publicly exposed on AWSβ317Updated 2 years ago
- [MAMIP] Monitor AWS Managed IAM Policies Changesβ477Updated this week
- Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frameβ¦β224Updated last year
- AWS Inventory and Compliance Frameworkβ223Updated last year
- Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).β138Updated 8 months ago
- AWS Identity and Access Management Visualizer and Anomaly Finderβ288Updated 4 months ago
- Open Cloud Security Posture Management Engineβ334Updated 2 years ago
- Fetch all public IP addresses tied to your AWS account. Works with IPv4/IPv6, Classic/VPC networking, and across all AWS servicesβ634Updated 3 years ago
- Library and CLI tool for analysing CloudFormation templates and check them for security compliance.β399Updated last week
- CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.β887Updated 2 years ago
- β203Updated last month
- Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)β436Updated last year
- Access Undenied parses AWS AccessDenied CloudTrail events, explains the reasons for them, and offers actionable remediation steps. Open-sβ¦β260Updated last year
- A graph-based tool for visualizing effective access and resource relationships in AWS environments.β922Updated 2 years ago
- A command-line tool to get valuable information out of AWS CloudTrailβ794Updated this week
- AWS CloudSaga - Simulate security events in AWSβ442Updated this week
- β151Updated last year
- Open source application to instantly remediate common security issues through the use of AWS Configβ222Updated 4 years ago
- AWS Serverless Securityβ400Updated 2 years ago
- IAM-Deescalate helps mitigate privilege escalation risk in AWS identity and access management (IAM)β96Updated 2 years ago
- β363Updated 8 months ago
- OWASP Domain Protect - prevent subdomain takeoverβ397Updated last month
- Identity & Access Management simplified and secure.β249Updated last year