A comprehensive scanner for Google Cloud
☆357Dec 5, 2025Updated 5 months ago
Alternatives and similar repositories for gcp_scanner
Users that are interested in gcp_scanner are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Compares and analyzes GCP IAM roles.☆79Mar 9, 2025Updated last year
- Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…☆298Updated this week
- ☆19Jul 9, 2022Updated 3 years ago
- A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.☆419Oct 6, 2025Updated 7 months ago
- Tweets when new GCP IAM updates are found☆13Updated this week
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Tools and blogs I use to perform GCP red teams☆138Jul 23, 2024Updated last year
- These are tools we released with our 2020 defcon/blackhat talk https://www.youtube.com/watch?v=Ml09R38jpok☆174Feb 6, 2025Updated last year
- Threatest is a CLI and Go framework for end-to-end testing threat detection rules.☆338May 7, 2026Updated 2 weeks ago
- GATOR - GCP Attack Toolkit for Offensive Research, a tool designed to aid in research and exploiting Google Cloud Environments☆90Jun 22, 2024Updated last year
- Identify privilege escalation paths within and across different clouds☆720Feb 6, 2026Updated 3 months ago
- Automated Persistence and Lateral Movement using GCP Patch Management☆16Aug 11, 2022Updated 3 years ago
- ☆27Aug 18, 2023Updated 2 years ago
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆101Jan 12, 2024Updated 2 years ago
- RepoReaper is an automated tool crafted to meticulously scan and identify exposed .git repositories within specified domains and their su…☆35Feb 20, 2024Updated 2 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆1,026May 4, 2026Updated 2 weeks ago
- GCP CSPM using Google Sheets☆38Apr 4, 2025Updated last year
- ☆66May 21, 2024Updated 2 years ago
- APK Infrastructure Investigator☆64Jun 20, 2023Updated 2 years ago
- ☆89Feb 11, 2022Updated 4 years ago
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …☆358Apr 21, 2026Updated last month
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt��…☆17Jun 11, 2024Updated last year
- Automating situational awareness for cloud penetration tests.☆2,382Apr 21, 2026Updated last month
- GCPGoat : A Damn Vulnerable GCP Infrastructure☆439Oct 29, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Offensive security drives defensive security. We're sharing a collection of SaaS attack techniques to help defenders understand the threa…☆1,413Apr 21, 2026Updated last month
- ☆116Feb 11, 2026Updated 3 months ago
- Detects CanaryTokens in Office docs and PDFs (docx, xlsx, pptx, pdf) without triggering alerts☆130Dec 23, 2025Updated 4 months ago
- ☆170Sep 30, 2025Updated 7 months ago
- FirebaseExploiter is a vulnerability discovery tool that discovers Firebase Database which are open and can be exploitable. Primarily bui…☆177Nov 7, 2022Updated 3 years ago
- ☆14Jun 20, 2022Updated 3 years ago
- Python library to carry out DFIR analysis on the Cloud☆502May 11, 2026Updated last week
- A small library to alter AWS API requests; Used for fuzzing research☆22Nov 2, 2023Updated 2 years ago
- Enumerate valid users within Microsoft Teams and OneDrive with clean output.☆62Feb 4, 2025Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Jan 18, 2022Updated 4 years ago
- A fast enumeration tool for publicly exposed Azure Storage blobs.☆119Mar 25, 2023Updated 3 years ago
- ☆29Mar 2, 2023Updated 3 years ago
- A high-performance domain scanner that discovers active domains by testing multiple Top-Level Domains (TLDs) for given domain names.☆33Apr 20, 2026Updated last month
- Terraform to run Scoutsuite security scan of projects within a Google Cloud Org. Report will be published to a GCS bucket.☆17Jan 5, 2026Updated 4 months ago
- Burp Extension for AWS Signing☆92Jan 10, 2025Updated last year
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆142Jan 2, 2025Updated last year