andresriancho / nimbostratus

Related projects ⓘ

Alternatives and complementary repositories for nimbostratus

• MindPointGroup / cloudfrunt
  A tool for identifying misconfigured CloudFront domains
  ☆346Updated 4 years ago
• carnal0wnage / weirdAAL
  WeirdAAL (AWS Attack Library)
  ☆781Updated last year
• Voulnet / barq
  barq: The AWS Cloud Post Exploitation framework!
  ☆386Updated 2 years ago
• stuhirst / awssecurity
  for AWS Security material
  ☆246Updated 2 years ago
• dagrz / aws_pwn
  A collection of AWS penetration testing junk
  ☆1,173Updated last year
• RhinoSecurityLabs / Security-Research
  Exploits written by the Rhino Security Labs team
  ☆1,059Updated 3 years ago
• RhinoSecurityLabs / Cloud-Security-Research
  Cloud-related research releases from the Rhino Security Labs team.
  ☆356Updated 4 years ago
• VirtueSecurity / aws-extender
  AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.
  ☆241Updated 2 years ago
• ThreatResponse / aws_ir
  Python installable command line utiltity for mitigation of host and key compromises.
  ☆344Updated 3 years ago
• 0x4D31 / burpa
  Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Applica…
  ☆481Updated 6 years ago
• RhinoSecurityLabs / AWS-IAM-Privilege-Escalation
  A centralized source of all AWS IAM privilege escalation methods released by Rhino Security Labs.
  ☆897Updated 5 years ago
• nccgroup / G-Scout
  Google Cloud Platform Security Tool
  ☆232Updated 5 years ago
• magoo / redteam-plan
  Issues to consider when planning a red team exercise.
  ☆611Updated 7 years ago
• OWASP / DVSA
  a Damn Vulnerable Serverless Application
  ☆534Updated last year
• koenrh / s3enum
  Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.
  ☆227Updated 2 weeks ago
• mykter / aws-security-cert-service-notes
  Security aspects of AWS products for the Security Specialist certification
  ☆208Updated 2 years ago
• RhinoSecurityLabs / ccat
  Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.
  ☆591Updated 5 years ago
• tomdev / teh_s3_bucketeers
  ☆273Updated 3 years ago
• duo-labs / secret-bridge
  Monitors Github for leaked secrets
  ☆189Updated 3 weeks ago
• RhinoSecurityLabs / GCPBucketBrute
  A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.
  ☆483Updated last year
• owasp-cloud-security / owasp-cloud-security
  OWASP Cloud Security - Enabling conversations through threat and control stories
  ☆177Updated 5 years ago
• salesforce / vulnreport
  Open-source pentesting management and automation platform by Salesforce Product Security
  ☆593Updated 2 years ago
• disruptops / cred_scanner
  A simple file-based scanner to look for potential AWS access and secret keys in files
  ☆89Updated 8 months ago
• BishopFox / smogcloud
  Find cloud assets that no one wants exposed 🔎 ☁️
  ☆332Updated 4 years ago
• 0xbharath / slurp-old
  A tool to enumerate S3 buckets manually or via certstream
  ☆80Updated last year
• SecGen / SecGen
  Generate vulnerable virtual machines on the fly (current team development is taking place in the cliffe/SecGen fork)
  ☆316Updated 5 years ago
• BishopFox / dufflebag
  Search exposed EBS volumes for secrets
  ☆286Updated last year