allisonis / gcp-iam-sentinel-examples

Related projects ⓘ

Alternatives and complementary repositories for gcp-iam-sentinel-examples

• alexivkin / kubepwn
  Kubernetes Pwnage for all
  ☆54Updated 4 years ago
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 2 years ago
• nccgroup / ConMachi
  Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container
  ☆103Updated 5 years ago
• cedowens / aws-cli-notes
  A combined list of helpful awscli commands from Scott Piper's flaws.cloud exercise as well as from Beau Bullock's Breaching the Cloud Tra…
  ☆18Updated 3 years ago
• steeve85 / tfviz
  Visualize your Terraform files
  ☆34Updated 4 years ago
• somethingnew2-0 / SimpleCSPM
  GCP CSPM using Google Sheets
  ☆34Updated 5 months ago
• antitree / cmd_and_kubectl_demos
  ☆27Updated last week
• disruptops / IncidentResponseGenerator
  Updated incident response generator for training classes
  ☆42Updated 3 years ago
• cado-security / AWS_EKS_Cluster_Forensics
  AWS EKS Cluster Forensics
  ☆22Updated 3 years ago
• NodyHub / k8s-ctf-rocks
  Kubernetes Easter CTF
  ☆58Updated 4 years ago
• HBOCodeLabs / gimme-aws-creds
  A CLI that utilizes Okta IdP via SAML to acquire temporary AWS credentials
  ☆10Updated 3 years ago
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆74Updated 2 years ago
• nccgroup / go-pillage-registries
  Pentester-focused Docker registry tool to enumerate and pull images
  ☆104Updated 4 years ago
• nccgroup / insject
  insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.
  ☆49Updated 2 years ago
• mayakacz / presentation-slides
  Slides from presentations I give!
  ☆20Updated 6 months ago
• Frichetten / aws_stealth_perm_enum
  Research on the enumeration of IAM permissions without logging to CloudTrail
  ☆60Updated 3 years ago
• crypsisgroup / ebs-direct-sec-tools
  Fun tools around the EBS Direct API
  ☆18Updated 3 years ago
• prolsen / aws_responder
  AWS Incident Response Kit (AIRK) - AWS Incident Response
  ☆21Updated 4 years ago
• vectra-ai-research / log4j-aws-sandbox
  A set of AWS resources for testing the Log4Shell vulnerability, deployable with terraform
  ☆12Updated 2 years ago
• mauilion / blackhat-2019
  ☆48Updated 4 years ago
• WarnerMedia / aws-guardduty-enterprise
  Manage GuardDuty At Enterprise Scale
  ☆22Updated 4 years ago
• dxa4481 / gcploit
  These are tools we released with our 2020 defcon/blackhat talk https://www.youtube.com/watch?v=Ml09R38jpok
  ☆165Updated last year
• GoogleCloudPlatform / active-assist
  ☆24Updated 4 months ago
• offensive-terraform / terraform-aws-cross-account-persistence
  Offensive Terraform module which creates an IAM role with trust relationship with attacker's AWS account and attaches managed IAM Policy …
  ☆12Updated 4 years ago
• dxa4481 / AttackingAndDefendingTheGCPMetadataAPI
  This repo gives an overview of some GCP metadata API attack and defend patterns
  ☆76Updated 4 years ago