Alternatives and similar repositories for zasca

Users that are interested in zasca are comparing it to the libraries listed below

• chughes29 / state-of-cloud-security
  A collection of 2020 artifacts describing the major pain points, vulnerabilities and concerns with Cloud Security.
  ☆19Updated 4 years ago
• avishayil / cdk-goat
  Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure
  ☆47Updated last year
• tradichel / SecurityMetricsAutomation
  ☆41Updated last month
• tenchi-security / camp
  CloudSplaining on AWS Managed Policies
  ☆44Updated this week
• lightspin-tech / red-bucket-gcp
  ☆10Updated 3 years ago
• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆71Updated 2 years ago
• avishayil / cf-signer
  Tool for signing and verifying the integrity of CloudFormation templates
  ☆15Updated 2 years ago
• Kloudle / attacking-and-auditing-docker-containers-and-kubernetes-clusters-training
  ☆12Updated 4 years ago
• mgreiler / code-reviews
  code reviews to practice
  ☆16Updated 4 years ago
• offensive-terraform / offensive-terraform.github.io
  Offensive Terraform Website
  ☆45Updated 4 years ago
• vectra-ai-research / log4j-aws-sandbox
  A set of AWS resources for testing the Log4Shell vulnerability, deployable with terraform
  ☆12Updated 3 years ago
• kaakaww / vuln-graphql-api
  A very vulnerable implementation of a GraphQL API.
  ☆16Updated 3 weeks ago
• GoogleCloudPlatform / assured-workloads-terraform
  ☆16Updated last year
• disruptops / assess_network
  Assess certain AWS network configurations
  ☆12Updated 7 years ago
• we45 / ZAP-Mini-Workshop
  Interactive IPython Notebook to demonstrate OWASP ZAP's API and Scripting Functions - OWASP ZAP 2.8.0
  ☆41Updated 2 years ago
• trustoncloud / threatmodel-for-aws-s3
  Threat model for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach
  ☆157Updated last year
• SummitRoute / isolated_network_experiment
  CDK app to setup an isolated AWS network to experiment with ways of exfiltrating data
  ☆18Updated 3 years ago
• P3tra-WP / Jupyter-Threat
  ☆14Updated 2 years ago
• lightspin-tech / red-shadow
  Lightspin AWS IAM Vulnerability Scanner
  ☆96Updated 4 years ago
• anunay-bhatt / secure-serverless-reference-architecture
  A walkthrough of security controls for a serverless architecture via a demo application
  ☆12Updated 3 years ago
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆66Updated 2 months ago
• aws-quickstart / quickstart-trendmicro-deepsecurity
  AWS Quick Start Team
  ☆16Updated 10 months ago
• lmoratti / risky-records
  Given a list of domains and known IP and buckets that are owned, which might be susceptible to domain hijacking?
  ☆14Updated 11 months ago
• appsecco / kubeseco
  Application Security Workflow Automation using Docker and Kubernetes
  ☆22Updated 2 years ago
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆61Updated 2 years ago
• primeharbor / breaches.cloud
  https://breaches.cloud
  ☆42Updated 10 months ago
• Whitespots-OU / security-requirements-generator
  A small tool to help developers understand a huge set of security requirements from appsec teams
  ☆47Updated 3 years ago
• chainguard-dev / github-audit-alerter
  Slack alert bot for matching Github Audit Events
  ☆10Updated 9 months ago
• cytix-software / AppSec-Detection-Framework
  A framework for understanding the capabilities of automated detection methods at identifying classes of application security vulnerabilit…
  ☆30Updated this week
• rmkanda / tools
  Curated list of security tools
  ☆68Updated last year