andresriancho / nimbostratusLinks
Tools for fingerprinting and exploiting Amazon cloud infrastructures
☆470Updated 2 years ago
Alternatives and similar repositories for nimbostratus
Users that are interested in nimbostratus are comparing it to the libraries listed below
Sorting:
- WeirdAAL (AWS Attack Library)☆810Updated 4 months ago
- barq: The AWS Cloud Post Exploitation framework!☆387Updated 2 years ago
- A tool for identifying misconfigured CloudFront domains☆357Updated 4 years ago
- Exploits written by the Rhino Security Labs team☆1,079Updated 4 years ago
- A collection of AWS penetration testing junk☆1,197Updated last year
- for AWS Security material☆247Updated 3 years ago
- Cloud-related research releases from the Rhino Security Labs team.☆388Updated 5 years ago
- a Damn Vulnerable Serverless Application☆542Updated last year
- AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.☆249Updated 3 years ago
- Issues to consider when planning a red team exercise.☆619Updated 7 years ago
- A centralized source of all AWS IAM privilege escalation methods released by Rhino Security Labs.☆916Updated 5 years ago
- Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.☆628Updated 5 years ago
- Google Cloud Platform Security Tool☆234Updated 5 years ago
- Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Applica…☆480Updated 6 years ago
- A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.☆519Updated 2 years ago
- ☆275Updated 3 years ago
- Find cloud assets that no one wants exposed 🔎 ☁️☆345Updated 4 years ago
- Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.☆249Updated 3 weeks ago
- Amazon bucket brute force tool☆101Updated 11 years ago
- Search exposed EBS volumes for secrets☆298Updated 2 years ago
- OWASP Cloud Security - Enabling conversations through threat and control stories☆180Updated 6 years ago
- Route53/CloudFront Vulnerability Assessment Utility☆86Updated last year
- These are the regexes that power truffleHog☆218Updated 2 years ago
- Python installable command line utiltity for mitigation of host and key compromises.☆345Updated 3 years ago
- A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.☆396Updated 5 years ago
- Lair is a reactive attack collaboration framework and web application built with meteor.☆383Updated 5 years ago
- REST/JSON API to the Burp Suite security tool.☆560Updated last year
- A simple file-based scanner to look for potential AWS access and secret keys in files☆91Updated last year
- Pillage web accessible GIT, HG and BZR repositories☆318Updated 8 years ago
- A security scanner for HTTP response headers.☆300Updated 4 months ago