assetnote / ghostbusterLinks
Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.
☆275Updated 10 months ago
Alternatives and similar repositories for ghostbuster
Users that are interested in ghostbuster are comparing it to the libraries listed below
Sorting:
- S3 Account Search☆11Updated last week
- Unauthenticated enumeration of AWS, Azure, and GCP Principals☆237Updated 8 months ago
- Script to audit GitHub Action Workflow files for potential vulnerabilities.☆155Updated 11 months ago
- OWASP Domain Protect - prevent subdomain takeover☆397Updated 7 months ago
- find dangling domains in a multi cloud environment☆142Updated last month
- Protect against subdomain takeover☆92Updated 2 weeks ago
- Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.☆509Updated last year
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆220Updated last month
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆105Updated 6 months ago
- A utility to convert your AWS CLI credentials into AWS console access.☆241Updated 5 years ago
- An AWS IAM policy statement parser and query tool.☆192Updated last month
- Tools to assess DNS security.☆152Updated last year
- An AWS metadata enumeration tool by Plerion☆96Updated last year
- Cloud agnostic IAM permissions enumerator☆152Updated 3 months ago
- boostsecurityio/lotp☆130Updated 3 months ago
- The AWS Enumerator was created for service enumeration and info dumping for investigations of penetration testers during Black-Box testin…☆214Updated 3 years ago
- An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share th…☆203Updated 4 years ago
- A tool to uncover undocumented APIs from the AWS Console.☆110Updated 3 months ago
- ☆187Updated 3 months ago
- Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints☆119Updated 3 weeks ago
- A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation☆108Updated last year
- GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.☆382Updated 2 weeks ago
- ☆112Updated 2 years ago
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …☆294Updated last week
- truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)☆119Updated last year
- Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).☆143Updated 3 months ago
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆109Updated 8 months ago
- Scan publicly accessible assets on your AWS cloud environment☆138Updated last month
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆134Updated 4 months ago
- A simple tool to audit your AWS/GCP infrastructure for misconfiguration or potential security issues with plugins integration☆329Updated this week