appsecco / breaking-and-pwning-apps-and-servers-aws-azure-trainingView external linksLinks
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
☆949Nov 26, 2022Updated 3 years ago
Alternatives and similar repositories for breaking-and-pwning-apps-and-servers-aws-azure-training
Users that are interested in breaking-and-pwning-apps-and-servers-aws-azure-training are comparing it to the libraries listed below
Sorting:
- This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage clou…☆2,800Sep 17, 2024Updated last year
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆134Apr 28, 2020Updated 5 years ago
- Repository for all the workshop content delivered at nullcon X on 1st of March 2019☆80Apr 4, 2019Updated 6 years ago
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆357Oct 14, 2020Updated 5 years ago
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆5,065Updated this week
- A centralized source of all AWS IAM privilege escalation methods released by Rhino Security Labs.☆924Jul 25, 2019Updated 6 years ago
- List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.☆9,401Oct 16, 2025Updated 4 months ago
- CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool☆3,475Updated this week
- Azure Red Team tool for graphing Azure and Azure Active Directory objects☆1,685Jan 8, 2024Updated 2 years ago
- ☆333Dec 8, 2022Updated 3 years ago
- A collection of scripts for assessing Microsoft Azure security☆2,302Oct 29, 2025Updated 3 months ago
- CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.☆135Sep 25, 2019Updated 6 years ago
- Applied Purple Teaming - (ITOCI4hr) - Infrastructure, Threat Optics, and Continuous Improvement - June 6, 2020☆323Jan 22, 2021Updated 5 years ago
- Lesser Known Web Attack Lab☆330Feb 7, 2020Updated 6 years ago
- Active Directory Assessment and Privilege Escalation Script☆1,132Dec 7, 2022Updated 3 years ago
- Attack and defend active directory using modern post exploitation adversary tradecraft activity☆4,791Jul 29, 2025Updated 6 months ago
- Automate the creation of a lab environment complete with security tooling and logging best practices☆4,900Jul 6, 2024Updated last year
- Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.☆2,017Jul 12, 2025Updated 7 months ago
- Wiki to collect Red Team infrastructure hardening resources☆4,442Oct 1, 2025Updated 4 months ago
- This repo contains workshop material delivered at #nullcon2020☆16Mar 6, 2020Updated 5 years ago
- Automated Red Team Infrastructure deployement using Docker☆1,259Aug 24, 2022Updated 3 years ago
- A graph-based tool for visualizing effective access and resource relationships in AWS environments.☆994Oct 4, 2022Updated 3 years ago
- Enumerate the permissions associated with AWS credential set☆1,217Feb 5, 2024Updated 2 years ago
- ☆139Mar 29, 2023Updated 2 years ago
- Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.☆881Mar 5, 2025Updated 11 months ago
- SSRF (Server Side Request Forgery) testing resources☆2,484Oct 12, 2024Updated last year
- Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.☆1,165Dec 8, 2022Updated 3 years ago
- A collection of custom security tools for quick needs.☆3,286May 1, 2023Updated 2 years ago
- Cloud-related research releases from the Rhino Security Labs team.☆392Apr 23, 2020Updated 5 years ago
- Resources for our Active Directory security workshops☆141Sep 9, 2021Updated 4 years ago
- Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.☆470Nov 14, 2019Updated 6 years ago
- This repository will serve as the "master" repo containing all trainings and tutorials done in preperation for OSWE in conjunction with t…☆930Jan 6, 2025Updated last year
- Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term o…☆2,618Dec 13, 2025Updated 2 months ago
- AWS API Gateway management tool for creating on the fly HTTP pass-through proxies for unique IP rotation☆2,208Apr 3, 2023Updated 2 years ago
- ☆2,313Dec 8, 2023Updated 2 years ago
- The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, f…☆4,346Sep 30, 2024Updated last year
- Various Payload wordlists☆239Apr 26, 2025Updated 9 months ago
- The Swiss Army knife for automated Web Application Testing☆2,324May 8, 2024Updated last year
- A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon☆1,285Jan 26, 2024Updated 2 years ago