hakaioffsec/gcp_enum

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/hakaioffsec/gcp_enum)

hakaioffsec / gcp_enum

A Python script to authenticate and test access to Google Cloud Platform (GCP) resources.

☆17

Alternatives and similar repositories for gcp_enum

Users that are interested in gcp_enum are comparing it to the libraries listed below

Sorting:

inzlain / sameuser
View on GitHub
Helper script for BloodHound to automatically add relationships between multiple accounts owned by the same individual
☆14Jul 13, 2022Updated 3 years ago
matro7sh / bof-collection
View on GitHub
collection of beacon object file (Cobalt strike)
☆12Jan 21, 2023Updated 3 years ago
EspressoCake / DLL_Version_Enumeration_BOF
View on GitHub
A BOF for enumerating version information for DLLs associated for a Beacon process.
☆16Nov 23, 2021Updated 4 years ago
MaorSabag / fileSearcher
View on GitHub
A simple BOF (Beacon Object File) to search files in the system
☆15Dec 2, 2023Updated 2 years ago
trainr3kt / Readfile_BoF
View on GitHub
☆22Jun 21, 2022Updated 3 years ago
BishopFox / awsservicemap
View on GitHub
Go module that returns supported regions for a service or supported services for a region
☆18Dec 12, 2025Updated 3 months ago
Octoberfest7 / Backstab_BOF
View on GitHub
Beacon Object File implementation of Yaxser's Backstab
☆15Mar 9, 2022Updated 4 years ago
peacand / winsharecrawler
View on GitHub
Python crawler for remote Windows shares
☆12Nov 29, 2015Updated 10 years ago
KingOfTheNOPs / EnableWebDAVClient-BOF
View on GitHub
Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts
☆23Sep 15, 2023Updated 2 years ago
tenchi-security / camp
View on GitHub
CloudSplaining on AWS Managed Policies
☆44Sep 8, 2025Updated 6 months ago
beescuit / githubid
View on GitHub
Quickly find all identities someone has used on their Github commits
☆16Jul 28, 2024Updated last year
BreakingMhet / honeyzure
View on GitHub
HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…
☆17Jun 11, 2024Updated last year
lmoratti / risky-records
View on GitHub
Given a list of domains and known IP and buckets that are owned, which might be susceptible to domain hijacking?
☆15Sep 20, 2024Updated last year
apkc / CVE-2024-26229-BOF
View on GitHub
BOF implementations of CVE-2024-26229 for Cobalt Strike and BruteRatel
☆27Jun 13, 2024Updated last year
tracebit-com / find-s3-account
View on GitHub
Sample code for finding AWS Account ID of an S3 bucket.
☆49Feb 23, 2024Updated 2 years ago
Hagrid29 / BOF-CredUI
View on GitHub
Cobalt Strike Beacon Object File (BOF) that uses CredUIPromptForWindowsCredentials API to invoke credential prompt
☆23Nov 23, 2022Updated 3 years ago
spotify / gcp-aws-iam-federation-webidentity
View on GitHub
Creates needed resources for federating access between a GCP service account and AWS IAM role.
☆30Apr 3, 2024Updated last year
aws-samples / visualize-iam-access-analyzer-policy-validation-findings
View on GitHub
☆21Feb 22, 2023Updated 3 years ago
sk3w / beacon-object-files
View on GitHub
Miscellaneous examples for use with Cobalt Strike Beacon
☆10Nov 19, 2020Updated 5 years ago
giwiro / nakitai
View on GitHub
Multiplatform multithread efficient stream rust ransomware
☆15May 18, 2022Updated 3 years ago
vysecurity / Nemesis-Download-Watcher
View on GitHub
Watches the Downloads folder for any new files and inserts it into Nemesis for analysis.
☆15Feb 29, 2024Updated 2 years ago
brosck / Rebellion
View on GitHub
「⚔️」Ring 0 Rootkit for Linux Kernels x86/x86_64 5.x/6.x
☆26Apr 10, 2025Updated 11 months ago
c3l3si4n / pwnkit
View on GitHub
PoC for the CVE-2021-4034 vulnerability, affecting polkit < 0.120.
☆24Jan 26, 2022Updated 4 years ago
ayushpriya10 / IMDShift
View on GitHub
☆55Apr 25, 2023Updated 2 years ago
tehstoni / RustyDumper
View on GitHub
Process dumper wrote in rust.
☆14Sep 16, 2024Updated last year
arosenmund / defcon32_dissecting_defeating_ransomwares_evasion
View on GitHub
Dissecting and Defeating Ransomware's Evasion Tactics Defcon 32
☆17Aug 9, 2024Updated last year
kiwids0220 / deviceCode2WinHello
View on GitHub
A small script that automates Entra ID persistence with Windows Hello For Business key
☆67Feb 16, 2025Updated last year
byt3bl33d3r / dockerxxx
View on GitHub
An 💦 orgasmic 💦 Python library for the Docker Engine API 🥵
☆13Jan 13, 2024Updated 2 years ago
hac01 / gcp-iam-brute
View on GitHub
☆51Jun 13, 2024Updated last year
AbstractClass / CloudPrivs
View on GitHub
Determine privileges from cloud credentials via brute-force testing.
☆69Aug 22, 2024Updated last year
nick-frischkorn / SuspendEventLogBOF
View on GitHub
Beacon Object File to locate and suspend the threads hosting the Event Log service
☆29Jun 17, 2022Updated 3 years ago
EspressoCake / BOF_NativeAPI_Definitions-VSCode
View on GitHub
A VSCode plugin to assist with BOF development.
☆37Aug 14, 2024Updated last year
blackhuntop / Ghost-Cve
View on GitHub
GitHub CVE Repository Hunt
☆18Jul 23, 2024Updated last year
ReversecLabs / cloud-wiki
View on GitHub
A public cloud security knowledgebase - https://www.secwiki.cloud/
☆51Nov 12, 2024Updated last year
knavesec / BloodHound-Custom-Queries
View on GitHub
Assorted BloodHound Cypher queries/tricks I haven't seen in other cheat sheets
☆12Jun 21, 2021Updated 4 years ago
Ayrx / atriage
View on GitHub
A dumb afl-fuzz triage tool.
☆14Dec 8, 2022Updated 3 years ago
stephenbradshaw / aws_url_signer
View on GitHub
POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
☆59Sep 20, 2023Updated 2 years ago
Hagrid29 / BOF-RemoteRegSave
View on GitHub
Cobalt Strike Beacon Object File (BOF) that uses RegConnectRegistryA + RegOpenKeyExA API to dump registry hives on remote computer
☆17Mar 4, 2023Updated 3 years ago
CCob / chlonium
View on GitHub
Chromium Cookie import / export tool
☆11Jul 21, 2024Updated last year