Clean accounts over permissions in GCP infra at scale
☆71May 9, 2023Updated 2 years ago
Alternatives and similar repositories for CureIAM
Users that are interested in CureIAM are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Compares and analyzes GCP IAM roles.☆78Mar 9, 2025Updated last year
- ☆16Jul 17, 2024Updated last year
- ☆229Mar 10, 2026Updated 2 weeks ago
- ☆12Jun 22, 2022Updated 3 years ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆59Sep 20, 2023Updated 2 years ago
- ☆124May 26, 2025Updated 9 months ago
- RepoReaper is an automated tool crafted to meticulously scan and identify exposed .git repositories within specified domains and their su…☆35Feb 20, 2024Updated 2 years ago
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆40Aug 29, 2024Updated last year
- ☆187Mar 2, 2026Updated 3 weeks ago
- Safer AWS SCP deployments via real-time monitoring☆56Sep 30, 2023Updated 2 years ago
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆113Nov 13, 2024Updated last year
- ☆51Jun 13, 2024Updated last year
- OpenCSPM Community Controls☆14May 18, 2021Updated 4 years ago
- A Python script to authenticate and test access to Google Cloud Platform (GCP) resources.☆17Jan 31, 2024Updated 2 years ago
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆292Sep 4, 2024Updated last year
- An Evil OIDC Server☆53Oct 19, 2022Updated 3 years ago
- ☆18Jul 30, 2024Updated last year
- A tool to reverse engineer and inspect the RPM and APT databases to list all the packages along with executables, service, versions and C…☆17Feb 20, 2026Updated last month
- ☆61Mar 26, 2021Updated 4 years ago
- ☆13Mar 14, 2021Updated 5 years ago
- A tool to check the security settings of Github Organizations.☆75Feb 9, 2026Updated last month
- Scripts and Lambdas to help with automated deployment of AWS Shield Advanced☆12Feb 11, 2022Updated 4 years ago
- This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs☆39Sep 25, 2024Updated last year
- A public cloud security knowledgebase - https://www.secwiki.cloud/☆51Nov 12, 2024Updated last year
- Generates runbooks for GuardDuty findings☆38Jun 24, 2024Updated last year
- Create tar/zip archives that try to exploit zipslip vulnerability.☆48Sep 20, 2024Updated last year
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆23Aug 30, 2024Updated last year
- Web Path Finder☆60Nov 22, 2023Updated 2 years ago
- go-audit is an alternative to the auditd daemon that ships with many distros☆16Oct 28, 2018Updated 7 years ago
- ☆75Mar 19, 2025Updated last year
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…☆17Jun 11, 2024Updated last year
- Detects CanaryTokens in Office docs and PDFs (docx, xlsx, pptx, pdf) without triggering alerts☆129Dec 23, 2025Updated 3 months ago
- All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.☆370Mar 17, 2026Updated last week
- Android attempt at PoC CVE-2016-8655☆13Jul 1, 2017Updated 8 years ago
- Fun tools around the EBS Direct API☆19Apr 16, 2021Updated 4 years ago
- RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…☆161Nov 21, 2024Updated last year
- Crowdsourced list of sensitive IAM Actions☆159Oct 29, 2024Updated last year
- Jekyll Files for cloudsecwiki.com☆49Sep 16, 2021Updated 4 years ago
- SCP management tool☆135Oct 23, 2023Updated 2 years ago