andresriancho / aws-audit-automation

Related projects: ⓘ

• andresriancho / vpc-vpn-pivot
  Pivot into private VPC networks using a VPN connection
  ☆40Updated 4 years ago
• cedowens / aws-cli-notes
  A combined list of helpful awscli commands from Scott Piper's flaws.cloud exercise as well as from Beau Bullock's Breaching the Cloud Tra…
  ☆18Updated 3 years ago
• appsecco / kubeseco
  Application Security Workflow Automation using Docker and Kubernetes
  ☆22Updated last year
• prolsen / aws_responder
  AWS Incident Response Kit (AIRK) - AWS Incident Response
  ☆21Updated 4 years ago
• nccgroup / SFPolDevChk
  Salesforce Policy Deviation Checker
  ☆29Updated 3 years ago
• JupiterOne-Archives / j1nuclei
  ☆13Updated 11 months ago
• vectra-ai-research / log4j-aws-sandbox
  A set of AWS resources for testing the Log4Shell vulnerability, deployable with terraform
  ☆12Updated 2 years ago
• RhinoSecurityLabs / Presentations
  A collection of slides, videos, and proof-of-concept scripts from various Rhino presentations.
  ☆37Updated 6 years ago
• nicolasriverocorvalan / cloud-sniper
  Virtual Security Operations Center
  ☆49Updated last year
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆74Updated 2 years ago
• kurmiashish / S3Insights
  S3Insights is a platform for efficiently deriving security insights about S3 data through metadata analysis
  ☆11Updated 2 weeks ago
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 2 years ago
• Appliscale / cloud-security-audit
  A command line security audit tool for Amazon Web Services
  ☆79Updated 5 years ago
• sebastian-mora / awsssome_phish
  AWS SSO serverless phishing API.
  ☆29Updated 3 years ago
• YaleUniversity / ZAP_ASVS_Checks
  ZAP scripts to implement ASVS L1 checking
  ☆13Updated 2 years ago
• RhinoSecurityLabs / CloudScraper
  CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
  ☆28Updated 2 years ago
• torque59 / AWS-Vulnerable-Lambda
  An AWS Lambda vulnerable application written in flask.
  ☆48Updated 6 years ago
• pry0cc / mapper
  A tool to run nmap against each line in a script.
  ☆16Updated 3 years ago
• tacticaljmp / danglingaws
  Tool to tackle problematic dangling domains in Amazon Web Services.
  ☆13Updated 6 years ago
• HBOCodeLabs / gimme-aws-creds
  A CLI that utilizes Okta IdP via SAML to acquire temporary AWS credentials
  ☆10Updated 3 years ago
• pry0cc / hackbox-pro
  A git submodule list containing all the tools repo's you'll ever need.
  ☆28Updated 5 years ago
• disruptops / IncidentResponseGenerator
  Updated incident response generator for training classes
  ☆41Updated 3 years ago
• jaylagorio / Craal
  Finding Valuable Needles in Global Source Code Haystacks with Automation
  ☆18Updated 3 years ago
• cloud-sniper / cloud-lusat
  ☆36Updated this week
• tacticaljmp / aws-tool-comparison
  Overview about existing tools that can be useful for AWS auditing purposes.
  ☆15Updated 6 years ago
• Frichetten / aws_api_shapeshifter
  A small library to alter AWS API requests; Used for fuzzing research
  ☆21Updated 10 months ago
• cedowens / aws_key_triage_tool
  ☆18Updated this week
• disruptops / cred_scanner
  A simple file-based scanner to look for potential AWS access and secret keys in files
  ☆87Updated 6 months ago
• bridgecrewio / cdkgoat
  CdkGoat is Bridgecrew's "Vulnerable by Design" AWS CDK repository. CdkGoat is a learning and training project that demonstrates how commo…
  ☆43Updated last year
• abhinavbom / Metasploit-Penetration-Testing-Cookbook-Codes
  Following repository contains source codes used in my two Books.
  ☆10Updated 8 years ago