assetnote / ghostbuster
Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.
☆265Updated last month
Related projects ⓘ
Alternatives and complementary repositories for ghostbuster
- S3 Account Search☆245Updated 3 weeks ago
- find dangling domains in a multi cloud environment☆135Updated 6 months ago
- Unauthenticated enumeration of AWS, Azure, and GCP Principals☆202Updated 3 months ago
- An AWS IAM policy statement parser and query tool.☆156Updated 8 months ago
- Cloud agnostic IAM permissions enumerator☆139Updated 2 months ago
- OWASP Domain Protect - prevent subdomain takeover☆397Updated last month
- The AWS Enumerator was created for service enumeration and info dumping for investigations of penetration testers during Black-Box testin…☆181Updated 2 years ago
- IAM-Deescalate helps mitigate privilege escalation risk in AWS identity and access management (IAM)☆96Updated 2 years ago
- Script to audit GitHub Action Workflow files for potential vulnerabilities.☆150Updated 2 months ago
- An AWS metadata enumeration tool by Plerion☆76Updated 8 months ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆97Updated 9 months ago
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆196Updated last month
- Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).☆138Updated 7 months ago
- Protect against subdomain takeover☆92Updated 5 months ago
- A utility to convert your AWS CLI credentials into AWS console access.☆218Updated 4 years ago
- Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.☆477Updated 9 months ago
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.☆165Updated 5 months ago
- Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints☆112Updated last year
- Tools to assess DNS security.☆148Updated 8 months ago
- AWS Attack Path Management Tool - Walking on the Moon☆221Updated last week
- List of known AWS accounts☆166Updated 3 weeks ago
- ☆109Updated last year
- ☆151Updated 2 months ago
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆380Updated 3 months ago
- Resource types that can be publicly exposed on AWS☆316Updated 2 years ago
- This repo contains IOC, malware and malware analysis associated with Public cloud☆244Updated this week
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …☆251Updated 2 weeks ago
- A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation☆100Updated 8 months ago
- A tool to uncover undocumented APIs from the AWS Console.☆80Updated last month
- ☆109Updated 3 weeks ago