hakaioffsec/gcp_enum

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/hakaioffsec/gcp_enum)

hakaioffsec / gcp_enum

A Python script to authenticate and test access to Google Cloud Platform (GCP) resources.

☆18

Alternatives and similar repositories for gcp_enum

Users that are interested in gcp_enum are comparing it to the libraries listed below

Sorting:

BishopFox / awsservicemap
View on GitHub
Go module that returns supported regions for a service or supported services for a region
☆18Dec 12, 2025Updated 2 months ago
inzlain / sameuser
View on GitHub
Helper script for BloodHound to automatically add relationships between multiple accounts owned by the same individual
☆14Jul 13, 2022Updated 3 years ago
peacand / winsharecrawler
View on GitHub
Python crawler for remote Windows shares
☆12Nov 29, 2015Updated 10 years ago
matro7sh / bof-collection
View on GitHub
collection of beacon object file (Cobalt strike)
☆12Jan 21, 2023Updated 3 years ago
EspressoCake / DLL_Version_Enumeration_BOF
View on GitHub
A BOF for enumerating version information for DLLs associated for a Beacon process.
☆16Nov 23, 2021Updated 4 years ago
MaorSabag / fileSearcher
View on GitHub
A simple BOF (Beacon Object File) to search files in the system
☆15Dec 2, 2023Updated 2 years ago
BreakingMhet / honeyzure
View on GitHub
HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…
☆17Jun 11, 2024Updated last year
lmoratti / risky-records
View on GitHub
Given a list of domains and known IP and buckets that are owned, which might be susceptible to domain hijacking?
☆15Sep 20, 2024Updated last year
trainr3kt / Readfile_BoF
View on GitHub
☆22Jun 21, 2022Updated 3 years ago
tracebit-com / find-s3-account
View on GitHub
Sample code for finding AWS Account ID of an S3 bucket.
☆49Feb 23, 2024Updated 2 years ago
Cowonaboat / FtpSheller
View on GitHub
☆12Oct 16, 2017Updated 8 years ago
Octoberfest7 / Backstab_BOF
View on GitHub
Beacon Object File implementation of Yaxser's Backstab
☆15Mar 9, 2022Updated 3 years ago
O3-Cyber / repoman
View on GitHub
A Python tool to manage GitHub Organizations and perform backup
☆21Jan 6, 2026Updated last month
0xb-s / ssh-browser
View on GitHub
A simple and reliable SSH file manager designed to make remote file management easier. Connect to servers, transfer files, and organize y…
☆22Dec 21, 2024Updated last year
giwiro / nakitai
View on GitHub
Multiplatform multithread efficient stream rust ransomware
☆15May 18, 2022Updated 3 years ago
ReversecLabs / cloud-wiki
View on GitHub
A public cloud security knowledgebase - https://www.secwiki.cloud/
☆51Nov 12, 2024Updated last year
hac01 / gcp-iam-brute
View on GitHub
☆51Jun 13, 2024Updated last year
brosck / Rebellion
View on GitHub
「⚔️」Ring 0 Rootkit for Linux Kernels x86/x86_64 5.x/6.x
☆27Apr 10, 2025Updated 10 months ago
aws-samples / visualize-iam-access-analyzer-policy-validation-findings
View on GitHub
☆21Feb 22, 2023Updated 3 years ago
spotify / gcp-aws-iam-federation-webidentity
View on GitHub
Creates needed resources for federating access between a GCP service account and AWS IAM role.
☆29Apr 3, 2024Updated last year
KingOfTheNOPs / EnableWebDAVClient-BOF
View on GitHub
Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts
☆23Sep 15, 2023Updated 2 years ago
Hagrid29 / BOF-CredUI
View on GitHub
Cobalt Strike Beacon Object File (BOF) that uses CredUIPromptForWindowsCredentials API to invoke credential prompt
☆23Nov 23, 2022Updated 3 years ago
AbstractClass / CloudPrivs
View on GitHub
Determine privileges from cloud credentials via brute-force testing.
☆68Aug 22, 2024Updated last year
ayushpriya10 / IMDShift
View on GitHub
☆55Apr 25, 2023Updated 2 years ago
PaloAltoNetworks / cobra-tool
View on GitHub
Cloud Offensive Breach and Risk Assessment (COBRA) Tool
☆102Jan 27, 2026Updated last month
apkc / CVE-2024-26229-BOF
View on GitHub
BOF implementations of CVE-2024-26229 for Cobalt Strike and BruteRatel
☆27Jun 13, 2024Updated last year
adanalvarez / TrailDiscover
View on GitHub
An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…
☆174Feb 22, 2026Updated last week
kiwids0220 / deviceCode2WinHello
View on GitHub
A small script that automates Entra ID persistence with Windows Hello For Business key
☆65Feb 16, 2025Updated last year
nick-frischkorn / SuspendEventLogBOF
View on GitHub
Beacon Object File to locate and suspend the threads hosting the Event Log service
☆29Jun 17, 2022Updated 3 years ago
stephenbradshaw / aws_url_signer
View on GitHub
POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
☆59Sep 20, 2023Updated 2 years ago
JOSHUAJEBARAJ / GCP-GOAT
View on GitHub
GCP GOAT is the vulnerable application for learn the GCP Security
☆71May 20, 2025Updated 9 months ago
c3l3si4n / pwnkit
View on GitHub
PoC for the CVE-2021-4034 vulnerability, affecting polkit < 0.120.
☆24Jan 26, 2022Updated 4 years ago
OpenSecurityResearch / jmsdigger
View on GitHub
JMSDigger is JMS API basedEnterprise Messaging Application assessment tool
☆30Aug 6, 2014Updated 11 years ago
tehstoni / RustyKeys
View on GitHub
UAC Bypass using CMSTP in Rust
☆35Dec 6, 2024Updated last year
gojek / CureIAM
View on GitHub
Clean accounts over permissions in GCP infra at scale
☆71May 9, 2023Updated 2 years ago
Cipher7 / havoc-PoolParty
View on GitHub
Windows Thread Pool Injection Havoc Implementation
☆33Mar 23, 2024Updated last year
totekuh / red-toolkit
View on GitHub
A toolkit for your red team operations
☆34Oct 24, 2021Updated 4 years ago
carlospolop / gcp_privesc_scripts
View on GitHub
☆30Mar 2, 2023Updated 3 years ago
EspressoCake / BOF_NativeAPI_Definitions-VSCode
View on GitHub
A VSCode plugin to assist with BOF development.
☆37Aug 14, 2024Updated last year