hac01 / gcp-iam-brute
☆42Updated 9 months ago
Alternatives and similar repositories for gcp-iam-brute:
Users that are interested in gcp-iam-brute are comparing it to the libraries listed below
- Determine privileges from cloud credentials via brute-force testing.☆66Updated 6 months ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated last year
- A PoC to Simulate Ransomware Attack on AWS Environment☆30Updated 4 months ago
- ☆31Updated 3 years ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆40Updated last year
- ☆55Updated last year
- ☆33Updated 2 months ago
- This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs☆36Updated 5 months ago
- Blogpost series showcasing interesting cloud - web app security bugs☆47Updated last year
- ☆58Updated last year
- Tool to spray AWS Console IAM Logins☆28Updated 2 years ago
- Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.☆20Updated last year
- 🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends☆72Updated last year
- ☆33Updated 7 months ago
- Semgrep-based Policy Controller for Kubernetes☆47Updated this week
- Jenkins Security Research☆11Updated 3 months ago
- Enumerate AWS permissions and resources.☆67Updated 2 years ago
- A GitHub Actions Supply Chain CTF / Goat☆17Updated last month
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…☆16Updated 9 months ago
- A tool for quickly evaluating IAM permissions in AWS.☆57Updated last year
- moniorg is a tool that leverages crt.sh website to monitor domains of a target☆47Updated last year
- A steampipe plugin to query projectdiscovery.io tools.☆26Updated 7 months ago
- This repository hosts several snippets and file related to the BsidesLV 2024 talk about Shadow and Zombie APIs by me☆17Updated 7 months ago
- A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation☆103Updated last year
- AWS SSO serverless phishing API.☆31Updated 3 years ago
- This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interesting…☆47Updated 6 months ago
- Tools for attacking Azure Function Apps☆68Updated 4 months ago
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆103Updated 4 months ago