hakaioffsec / gcp_enumLinks
A Python script to authenticate and test access to Google Cloud Platform (GCP) resources.
☆18Updated last year
Alternatives and similar repositories for gcp_enum
Users that are interested in gcp_enum are comparing it to the libraries listed below
Sorting:
- An Evil OIDC Server☆54Updated 3 years ago
- Determine privileges from cloud credentials via brute-force testing.☆67Updated last year
- ☆60Updated 2 years ago
- Enumerate AWS permissions and resources.☆71Updated 3 years ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆59Updated 2 years ago
- Script written in python to perform Resource-Based Constrained Delegation (RBCD) attack by leveraging Impacket toolkit.☆21Updated 4 years ago
- A steampipe plugin to query projectdiscovery.io tools.☆27Updated last year
- ☆16Updated 2 years ago
- A not-curated list of cloud hacking labs☆26Updated last year
- EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.☆68Updated last year
- ☆50Updated last year
- ☆19Updated 3 years ago
- ☆15Updated 3 years ago
- Ansible role that Installs Mythic☆18Updated last year
- HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…☆40Updated 3 years ago
- cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com☆38Updated 3 years ago
- Parses Nessus .nessus files for exploitable vulnerabilities and outputs a report file in format MM-DD-YYYY-nessus.csv☆42Updated 5 months ago
- Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters☆15Updated 5 years ago
- Enumerate and check domains for Azure tenants☆60Updated 3 years ago
- Publicly availalbe vulnarble by desgin vm/machines☆43Updated 3 years ago
- Collection of Azure Tools to Pull down for Attacking an Environment + quick tips and other useful information☆77Updated last month
- Collection of Slides From My Conference Talks☆20Updated 3 years ago
- A Python implementation of dafthack's MSOLSpray. A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if …☆97Updated last year
- This script gets all accepted domains in Microsoft 365 using autodiscover, gets the tenant name and checks if there is a Microsoft Defend…☆24Updated last year
- Checklist for pentests, handy commands for to remembers, and a few tools to work on here and there. Far from complete!☆26Updated 2 years ago
- ☆24Updated 2 years ago
- dauthi is a tool that takes advantage of API functionality across a variety of MDM solutions to perform user enumeration and single-facto…☆43Updated last year
- Bulk hostname lookup using shodan☆14Updated 3 years ago
- An easy way to convert BloodHound output files into data that can be imported into reporting software like Dradis and Plextrac. Built by …☆18Updated 5 years ago
- ☆12Updated 3 years ago