assetnote / ghostbusterLinks
Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.
☆274Updated 9 months ago
Alternatives and similar repositories for ghostbuster
Users that are interested in ghostbuster are comparing it to the libraries listed below
Sorting:
- S3 Account Search☆10Updated 9 months ago
- Unauthenticated enumeration of AWS, Azure, and GCP Principals☆235Updated 8 months ago
- OWASP Domain Protect - prevent subdomain takeover☆397Updated 6 months ago
- Script to audit GitHub Action Workflow files for potential vulnerabilities.☆156Updated 10 months ago
- Protect against subdomain takeover☆92Updated last year
- find dangling domains in a multi cloud environment☆142Updated 2 weeks ago
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆220Updated last month
- An AWS IAM policy statement parser and query tool.☆189Updated 3 weeks ago
- Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.☆506Updated last year
- Tools to assess DNS security.☆152Updated last year
- An AWS metadata enumeration tool by Plerion☆96Updated last year
- An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share th…☆202Updated 4 years ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆105Updated 5 months ago
- A utility to convert your AWS CLI credentials into AWS console access.☆240Updated 5 years ago
- ☆111Updated 2 years ago
- ☆185Updated 3 months ago
- boostsecurityio/lotp☆128Updated 3 months ago
- FestIn - Open S3 Bucket Scanner☆234Updated 4 years ago
- Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).☆143Updated 2 months ago
- GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.☆376Updated last week
- The AWS Enumerator was created for service enumeration and info dumping for investigations of penetration testers during Black-Box testin…☆211Updated 3 years ago
- A collection of awesome AWS S3 tools that collects and enumerates exposed S3 buckets☆376Updated last year
- Cloud agnostic IAM permissions enumerator☆150Updated 3 months ago
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆424Updated 5 months ago
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆108Updated 8 months ago
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …☆284Updated 5 months ago
- A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation☆107Updated last year
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.☆172Updated 5 months ago
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆133Updated 3 months ago
- A tool to uncover undocumented APIs from the AWS Console.☆108Updated 2 months ago