Alternatives and similar repositories for ocular

Users that are interested in ocular are comparing it to the libraries listed below

• tenable / hidden-services-revealer
  ☆39Updated last year
• DataDog / whoAMI-scanner
  Scan your account for the use of untrusted AMIs
  ☆30Updated 2 weeks ago
• ayushpriya10 / IMDShift
  ☆55Updated 2 years ago
• offensive-actions / azure-storage-reverse-shell
  This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
  ☆37Updated last year
• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆42Updated 2 years ago
• doyensec / PoiEx
  🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends
  ☆73Updated last year
• messypoutine / gravy-overflow
  A GitHub Actions Supply Chain CTF / Goat
  ☆30Updated last week
• offensive-actions / release-tampering-pocs
  Proof of Concepts for malicious maintainers: How to Tamper with Releases built with GitHub Actions Worfklows, presented at fwd:cloudsec E…
  ☆77Updated 3 months ago
• cytix-software / AppSec-Detection-Framework
  A framework for understanding the capabilities of automated detection methods at identifying classes of application security vulnerabilit…
  ☆32Updated 3 weeks ago
• lacioffi / GCP-pentest-lab
  A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities
  ☆31Updated last month
• avishayil / cdk-goat
  Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure
  ☆48Updated last year
• saw-your-packet / CloudShovel
  A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…
  ☆112Updated last year
• offensive-actions / terraform-provider-statefile-rce
  This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.
  ☆59Updated 10 months ago
• ghostsecurityarchive / waf-btk
  WAF bypass PoC
  ☆50Updated 2 years ago
• tstromberg / supplychain-attack-data
  Data about all known supply-chain attacks through history
  ☆63Updated 6 months ago
• JosephTLucas / vger
  An interactive CLI application for interacting with authenticated Jupyter instances.
  ☆54Updated 7 months ago
• brandon-t-elliott / cve2epss
  A simple web app to get the latest EPSS data for a CVE ID
  ☆11Updated last week
• Neuroengine-vulns / autokaker
  Automated vulnerability discovery and annotation
  ☆67Updated last year
• StateFarmIns / CLAWS
  This application was built to help reduce the amount of time it takes to review AWS Lambda code.
  ☆61Updated last year
• nccgroup / ccs
  ☆114Updated 2 years ago
• nccgroup / cowcloud
  ☆60Updated 2 years ago
• SpecterOps / GitHound
  ☆82Updated last month
• omar2535 / GraphQLer
  🔍A cutting edge context aware GraphQL API fuzzing tool!
  ☆155Updated last week
• nodyhub / zipslipper
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆48Updated last year
• yaaras / honeybee
  Create honeypots for cloud environments
  ☆107Updated 2 months ago
• ReversecLabs / encap-attack
  Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.
  ☆23Updated last year
• nullenc0de / ChromeAudit
  Nuclei plugins to audit Chrome extensions
  ☆65Updated last year
• HarshVaragiya / aws-redteam-kit
  A PoC to Simulate Ransomware Attack on AWS Environment
  ☆32Updated last year
• controlplaneio / truffleproc
  truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)
  ☆120Updated 2 years ago
• AdnaneKhan / ActionsCacheBlasting
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆21Updated 9 months ago