appsecco / CloudPentestCheatsheetsLinks
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
☆22Updated 5 years ago
Alternatives and similar repositories for CloudPentestCheatsheets
Users that are interested in CloudPentestCheatsheets are comparing it to the libraries listed below
Sorting:
- AWS Security Checks☆39Updated 7 years ago
- ☆28Updated 6 years ago
- A tool to evaluate Content Security Policies.☆71Updated 5 years ago
- Preventing malicious takeover of the retired slurp AWS tool☆41Updated 6 years ago
- Repository for all the workshop content delivered at nullcon X on 1st of March 2019☆81Updated 6 years ago
- Virtual Security Operations Center☆50Updated last year
- A collection of slides, videos, and proof-of-concept scripts from various Rhino presentations.☆38Updated 6 years ago
- OAuth Security Cheatsheet☆40Updated 11 years ago
- A simple file-based scanner to look for potential AWS access and secret keys in files☆92Updated last year
- Scripts and tools for AWS Pentest☆53Updated 4 years ago
- Monitoring GitHub for sensitive data shared publicly☆66Updated 3 years ago
- retrive metadata endpoint data with these one liners.☆38Updated 4 years ago
- Report and finding templates used by the Serpico reporting tool☆16Updated 6 years ago
- Yet another open S3 bucket finder☆20Updated 7 years ago
- A collection of tools to find data that has been made public in cloud storage systems such as S3 Buckets and Digital Ocean Spaces☆75Updated 3 years ago
- A CLI tool to interact with hackerone.com. This was my submission for HackerOne's Summer 2018 Hack Day.☆39Updated 6 years ago
- Burp Suite Importer - Connect to multiple web servers while populating the sitemap.☆48Updated 5 years ago
- Pivot into private VPC networks using a VPN connection☆42Updated 5 years ago
- AWS S3 Sensitive Data Search☆36Updated 3 years ago
- This is a web application fuzzer scanner - the goal was CLI flexibility and rapid prototyping☆48Updated 5 years ago
- Ruby command-line interface to Burp Suite's REST API☆59Updated 5 years ago
- Amazon bucket brute force tool☆102Updated 12 years ago
- Scrap Latest Information Security Resources☆32Updated 4 years ago
- Clickjacking PoC Generator☆35Updated 4 years ago
- Just a bunch of useful links to take (and pass!) OSCP☆20Updated 5 years ago
- Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019☆22Updated 6 years ago
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆134Updated 5 years ago
- Where I'll be posting my scripts, guides, cheatsheets, and notes for for my OSCP journey.☆32Updated 7 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated 2 years ago
- A collective list of public JSON APIs for use in security. Contributions welcome☆25Updated 5 years ago