grines / scourLinks
☆127Updated last year
Alternatives and similar repositories for scour
Users that are interested in scour are comparing it to the libraries listed below
Sorting:
- Utility for downloading and mounting EBS snapshots using the EBS Direct API's☆86Updated 5 months ago
- Scan your EC2 instance to find its vulnerabilities using Vuls (https://vuls.io/en/)☆89Updated 2 years ago
- AWS SSO serverless phishing API.☆32Updated 4 years ago
- A utility to convert your AWS CLI credentials into AWS console access.☆241Updated 5 years ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider☆139Updated 3 years ago
- Research on the enumeration of IAM permissions without logging to CloudTrail☆61Updated 4 years ago
- ☆137Updated 2 years ago
- Lightspin AWS IAM Vulnerability Scanner☆96Updated 4 years ago
- Determine privileges from cloud credentials via brute-force testing.☆69Updated last year
- Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints☆120Updated last month
- ☆59Updated 2 years ago
- ☆90Updated 3 years ago
- An Evil OIDC Server☆53Updated 2 years ago
- Blogpost series showcasing interesting cloud - web app security bugs☆49Updated 2 years ago
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆134Updated 5 years ago
- Jekyll Files for cloudsecwiki.com☆50Updated 3 years ago
- Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).☆123Updated 2 years ago
- ☆36Updated 5 years ago
- IAMFinder enumerates and finds users and IAM roles in a target AWS account.☆110Updated 4 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆78Updated 3 years ago
- GCP GOAT is the vulnerable application for learn the GCP Security☆64Updated 3 months ago
- Dependency Combobulator☆93Updated last year
- Cloud agnostic IAM permissions enumerator☆153Updated 4 months ago
- ☆140Updated 2 weeks ago
- Kubernetes Pwnage for all☆57Updated 4 years ago
- Programmatically create hunting rules for deserialization exploitation with multiple keywords, gadget chains, object types, encodings, an…☆144Updated 2 years ago
- ☆50Updated last year
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated last year
- ☆112Updated 2 years ago
- Burp Extension for AWS Signing☆89Updated 7 months ago