A comprehensive scanner for Google Cloud
☆361Dec 5, 2025Updated 6 months ago
Alternatives and similar repositories for gcp_scanner
Users that are interested in gcp_scanner are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Compares and analyzes GCP IAM roles.☆78Mar 9, 2025Updated last year
- Pentesting framework for GCP that enumerates/downloads data that feeds into a BloodHound Opengraph model. Includes credential management,…☆299Updated this week
- ☆19Jul 9, 2022Updated 3 years ago
- A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.☆419Oct 6, 2025Updated 8 months ago
- Tweets when new GCP IAM updates are found☆13Updated this week
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Tools and blogs I use to perform GCP red teams☆139Jul 23, 2024Updated last year
- These are tools we released with our 2020 defcon/blackhat talk https://www.youtube.com/watch?v=Ml09R38jpok☆174Feb 6, 2025Updated last year
- Threatest is a CLI and Go framework for end-to-end testing threat detection rules.☆341May 24, 2026Updated 2 weeks ago
- GATOR - GCP Attack Toolkit for Offensive Research, a tool designed to aid in research and exploiting Google Cloud Environments☆90Jun 22, 2024Updated last year
- Identify privilege escalation paths within and across different clouds☆719Feb 6, 2026Updated 4 months ago
- Automated Persistence and Lateral Movement using GCP Patch Management☆16Aug 11, 2022Updated 3 years ago
- ☆27Aug 18, 2023Updated 2 years ago
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆101Jan 12, 2024Updated 2 years ago
- RepoReaper is an automated tool crafted to meticulously scan and identify exposed .git repositories within specified domains and their su…☆35Feb 20, 2024Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆1,031May 25, 2026Updated 2 weeks ago
- GCP CSPM using Google Sheets☆38Apr 4, 2025Updated last year
- ☆66May 21, 2024Updated 2 years ago
- APK Infrastructure Investigator☆65Jun 20, 2023Updated 2 years ago
- ☆89Feb 11, 2022Updated 4 years ago
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …☆358Apr 21, 2026Updated last month
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…☆17Jun 11, 2024Updated 2 years ago
- Automating situational awareness for cloud penetration tests.☆2,421May 26, 2026Updated 2 weeks ago
- GCPGoat : A Damn Vulnerable GCP Infrastructure☆442Oct 29, 2024Updated last year
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Offensive security drives defensive security. We're sharing a collection of SaaS attack techniques to help defenders understand the threa…☆1,425Apr 21, 2026Updated last month
- ☆116Feb 11, 2026Updated 4 months ago
- Detects CanaryTokens in Office docs and PDFs (docx, xlsx, pptx, pdf) without triggering alerts☆145Dec 23, 2025Updated 5 months ago
- ☆170Sep 30, 2025Updated 8 months ago
- FirebaseExploiter is a vulnerability discovery tool that discovers Firebase Database which are open and can be exploitable. Primarily bui…☆177Nov 7, 2022Updated 3 years ago
- ☆14Jun 20, 2022Updated 3 years ago
- Python library to carry out DFIR analysis on the Cloud☆504May 19, 2026Updated 3 weeks ago
- A small library to alter AWS API requests; Used for fuzzing research☆22Nov 2, 2023Updated 2 years ago
- Enumerate valid users within Microsoft Teams and OneDrive with clean output.☆62Feb 4, 2025Updated last year
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Jan 18, 2022Updated 4 years ago
- A fast enumeration tool for publicly exposed Azure Storage blobs.☆120Mar 25, 2023Updated 3 years ago
- ☆29Mar 2, 2023Updated 3 years ago
- A high-performance domain scanner that discovers active domains by testing multiple Top-Level Domains (TLDs) for given domain names.☆34Apr 20, 2026Updated last month
- Terraform to run Scoutsuite security scan of projects within a Google Cloud Org. Report will be published to a GCS bucket.☆17Jan 5, 2026Updated 5 months ago
- Burp Extension for AWS Signing☆93Jan 10, 2025Updated last year
- Freyja is a Golang, Purple Team agent that compiles into Windows, Linux and macOS x64 executables.☆41Oct 29, 2024Updated last year