Alternatives and similar repositories for IMDSpoof

Users that are interested in IMDSpoof are comparing it to the libraries listed below

• adanalvarez / HoneyTrail

  View on GitHub
  Independently deploy customized honeyservices in AWS to trigger alerts on unauthorized access. It utilizes a dedicated CloudTrail for pre…
  ☆51Nov 16, 2024Updated last year
• zmallen / cloudtrail2sightings

  View on GitHub
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆82Jul 25, 2022Updated 3 years ago
• RedSiege / SharpCollectionTemplate

  View on GitHub
  ☆14Sep 26, 2023Updated 2 years ago
• trufflesecurity / WhoAmISlack

  View on GitHub
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆42Dec 12, 2023Updated 2 years ago
• StevenSmiley / aws-mine

  View on GitHub
  AWS honey token manager
  ☆89Aug 1, 2024Updated last year
• Workingdaturah / BOF-Learning

  View on GitHub
  Cobalt Strike BOFS
  ☆16Dec 20, 2023Updated 2 years ago
• aquia-inc / aws-guardduty-runbook-generator

  View on GitHub
  Generates runbooks for GuardDuty findings
  ☆38Jun 24, 2024Updated last year
• cado-security / cloudgrep

  View on GitHub
  cloudgrep is grep for cloud storage
  ☆326Feb 26, 2025Updated 11 months ago
• mfdooom / threadless_loader_rs

  View on GitHub
  Threadless Injection Payload Toolkit
  ☆12Oct 12, 2023Updated 2 years ago
• fish-not-phish / open-vbrowser

  View on GitHub
  vBrowser is a secure, containerized browser platform designed for covert web investigations. Originally created to support deep and dark …
  ☆20Jan 11, 2026Updated last month
• sleeptok3n / RoleCrawl

  View on GitHub
  ☆21Sep 23, 2025Updated 4 months ago
• FuzzySecurity / SAFACon-Vienna

  View on GitHub
  ☆23Apr 28, 2024Updated last year
• kudelskisecurity / youshallnotpass

  View on GitHub
  YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.
  ☆37Jan 1, 2024Updated 2 years ago
• plerionhq / conditional-love

  View on GitHub
  An AWS metadata enumeration tool by Plerion
  ☆101Feb 12, 2024Updated 2 years ago
• unknownhad / CloudIntel

  View on GitHub
  This repo contains IOC, malware and malware analysis associated with Public cloud
  ☆249Nov 11, 2024Updated last year
• noperator / chromedb

  View on GitHub
  Read Chromium data (namely, cookies and local storage) straight from disk, without spinning up the browser.
  ☆134May 7, 2025Updated 9 months ago
• primeharbor / sensitive_iam_actions

  View on GitHub
  Crowdsourced list of sensitive IAM Actions
  ☆159Oct 29, 2024Updated last year
• redr0nin / bloudstrike

  View on GitHub
  Linux CS bypass technique
  ☆32Feb 4, 2025Updated last year
• Drew-Sec / EvilSlackbot

  View on GitHub
  A Slack bot phishing framework for Red Teaming exercises
  ☆166Apr 27, 2024Updated last year
• BishopFox / cloudfoxable

  View on GitHub
  Create your own vulnerable by design AWS penetration testing playground
  ☆433Feb 6, 2026Updated last week
• adanalvarez / TrailDiscover

  View on GitHub
  An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…
  ☆172Updated this week
• SecurityRunners / cloud-exposure-catalog

  View on GitHub
  A catalog of services that can be publicly exposed within different cloud providers.
  ☆14Aug 30, 2024Updated last year
• widdix / aws-amicleaner

  View on GitHub
  To clean up your AWS AMIs: First, include AMIs by name or tag. Second, exclude AMIs in use, younger than N days, or the newest N images. …
  ☆36Updated this week
• welldone-cloud / aws-scps-for-sandbox-and-training-accounts

  View on GitHub
  Collection of example Service Control Policies (SCPs) that are useful for sandbox and training AWS accounts.
  ☆161Dec 22, 2025Updated last month
• xforcered / ADOKit

  View on GitHub
  Azure DevOps Services Attack Toolkit
  ☆313Mar 15, 2025Updated 10 months ago
• JosephTLucas / vger

  View on GitHub
  An interactive CLI application for interacting with authenticated Jupyter instances.
  ☆55May 7, 2025Updated 9 months ago
• SecurityRunners / CloudCommotion

  View on GitHub
  Cloud Commotion intends to cause chaos to simulate security incidents
  ☆145Jun 18, 2024Updated last year
• cloud-copilot / iam-expand

  View on GitHub
  Expand IAM Actions with Wildcards
  ☆34Feb 7, 2026Updated last week
• gladstomych / AHHHZURE

  View on GitHub
  AHHHZURE is an automated deployment script that creates a vulnerable Azure cloud lab for offensive security practitioners and enthusiasts…
  ☆104Apr 22, 2024Updated last year
• ovotech / cloud-key-rotator

  View on GitHub
  A Golang program to rotate AWS & GCP account keys
  ☆67May 12, 2025Updated 9 months ago
• cedowens / aws-cli-notes

  View on GitHub
  A combined list of helpful awscli commands from Scott Piper's flaws.cloud exercise as well as from Beau Bullock's Breaching the Cloud Tra…
  ☆19Mar 1, 2021Updated 4 years ago
• Permiso-io-tools / capiche

  View on GitHub
  ☆18Feb 2, 2026Updated last week
• matthewdfuller / safer-scps

  View on GitHub
  Safer AWS SCP deployments via real-time monitoring
  ☆56Sep 30, 2023Updated 2 years ago
• jsa2 / aadcookiespoof

  View on GitHub
  Azure AD Identity Protection Cookie Spoofing
  ☆35Sep 2, 2023Updated 2 years ago
• carlospolop / bf-aws-perms-simulate

  View on GitHub
  ☆20Feb 9, 2024Updated 2 years ago
• vectra-ai-research / Halberd

  View on GitHub
  Halberd : Multi-Cloud Agentic Attack Tool
  ☆334Jan 12, 2026Updated last month
• Permiso-io-tools / cloudtail

  View on GitHub
  ☆30Jan 13, 2026Updated last month
• saw-your-packet / CloudShovel

  View on GitHub
  A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…
  ☆113Nov 13, 2024Updated last year
• RoseSecurity / WolfPack

  View on GitHub
  WolfPack combines the capabilities of Terraform and Packer to streamline the deployment of red team redirectors on a large scale.
  ☆150Jun 5, 2025Updated 8 months ago