Alternatives and similar repositories for clusterfuck

Users that are interested in clusterfuck are comparing it to the libraries listed below

• SpecterOps / GitHound
  ☆67Updated 2 weeks ago
• HarshVaragiya / aws-redteam-kit
  A PoC to Simulate Ransomware Attack on AWS Environment
  ☆32Updated 10 months ago
• RITRedteam / StreetCred
  Tool created for Red Team to test default credentials on SSH and WinRM and then execute scripts with those credentials before the passwor…
  ☆40Updated 2 years ago
• SpecterOps / JamfHound
  JamfHound is a python3 project designed to collect and identify attack paths in Jamf Pro tenants based on existing object permissions by …
  ☆62Updated 2 weeks ago
• stephenbradshaw / aws_url_signer
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆58Updated last year
• FalconForceTeam / dAWShund
  Putting a leash on naughty AWS permissions
  ☆128Updated 4 months ago
• offensive-actions / azure-storage-reverse-shell
  This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
  ☆37Updated 11 months ago
• hac01 / gcp-iam-brute
  ☆50Updated last year
• montysecurity / YaraMonitor
  Framework for Monitoring File Ingestion Source for Yara Matches
  ☆48Updated 5 months ago
• silascutler / dockerhoneypot-logs
  Collection of Docker honeypot logs from 2021 - 2024
  ☆36Updated 11 months ago
• n0tspam / delepwn
  DelePwn is a security assessment tool designed to identify and demonstrate the risks associated with Google Workspace Domain-Wide Delegat…
  ☆34Updated 3 weeks ago
• christophetd / aws-sso-device-code-authentication
  ☆34Updated 4 years ago
• kubenomicon / kubenomicon
  Offensive Kubernetes Threat Matrix -- kubenomicon.com
  ☆41Updated 2 weeks ago
• adelapazborrero / slack_jack
  Hijack a slack bot to phish your way in
  ☆56Updated last month
• Permiso-io-tools / capiche
  ☆17Updated 2 months ago
• LowOrbitSecurity / gubble
  gubble is a tool designed to audit Google Workspace group settings. It analyzes settings such as who can join, view membership, post mess…
  ☆79Updated 3 months ago
• Permiso-io-tools / RansomWhen
  RansomWhen is a tool to enumerate identities that can lock S3 Buckets using KMS, resulting in ransomwares, as well as detect occurances o…
  ☆54Updated 6 months ago
• 0ca / BoxPwnr
  An experimental project exploring the use of Large Language Models (LLMs) to solve HackTheBox machines autonomously.
  ☆59Updated this week
• nullenc0de / servicelens
  ServiceLens is a Python tool for analyzing services linked to Microsoft 365 domains. It scans DNS records like SPF and DMARC to identify …
  ☆77Updated 10 months ago
• NetSPI / FuncoPop
  Tools for attacking Azure Function Apps
  ☆83Updated 10 months ago
• jtesta / k8s_spoofilizer
  Creates Kubernetes Golden Tickets through ServiceAccount token forging and user certificate forging.
  ☆49Updated 5 months ago
• thinkst / defending-off-the-land
  Assortment of scripts and tools for our Blackhat EU 2024 talk
  ☆97Updated 6 months ago
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆49Updated 2 years ago
• nccgroup / cowcloud
  ☆59Updated 2 years ago
• NHAS / egressinator
  Find what egress ports are allowed
  ☆42Updated 2 years ago
• Semperis / SilverSamlForger
  Silver SAML forgery tool
  ☆55Updated last year
• grahamhelton / IMDSpoof
  IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.
  ☆104Updated last year
• ricardojoserf / DoubleTeam
  Listener that spawns a new tmux window for each incoming reverse shell + Supports listening on many ports
  ☆56Updated last month
• AbstractClass / CloudPrivs
  Determine privileges from cloud credentials via brute-force testing.
  ☆69Updated last year
• AdnaneKhan / Cacheract
  GitHub Actions Cache Native Malware - for Educational and Research Purposes only.
  ☆68Updated last week