jordanpotti / guardduty-opsec

Related projects ⓘ

Alternatives and complementary repositories for guardduty-opsec

• SygniaLabs / security-cloud-scout
  ☆133Updated last year
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆74Updated 2 years ago
• stephenbradshaw / aws_url_signer
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆58Updated last year
• AbstractClass / CloudPrivs
  Determine privileges from cloud credentials via brute-force testing.
  ☆64Updated 3 months ago
• BojackThePillager / Slackhound
  Slackhound allows red and blue teams to perform fast reconnaissance on Slack workspaces/organizations to quickly search user profiles, lo…
  ☆74Updated 9 months ago
• cedowens / Presentations
  Collection of Slides From My Conference Talks
  ☆20Updated 2 years ago
• asaurusrex / MachoBins
  ☆15Updated 2 years ago
• jordanpotti / rt-reading
  List of Red Team Resources
  ☆17Updated 4 years ago
• xenoscr / Useful-BloodHound-Queries
  A collection of Neo4j/BloodHound queries to collect interesting information.
  ☆45Updated 2 years ago
• cedowens / aws-cli-notes
  A combined list of helpful awscli commands from Scott Piper's flaws.cloud exercise as well as from Beau Bullock's Breaching the Cloud Tra…
  ☆18Updated 3 years ago
• Frichetten / SneakyEndpoints
  Hide from the InstanceCredentialExfiltration GuardDuty finding by using VPC Endpoints
  ☆113Updated last year
• praetorian-inc / Okta_Watering_Hole
  Next Generation Phishing Tool For Internal / Red Teams
  ☆35Updated 5 years ago
• sebastian-mora / awsssome_phish
  AWS SSO serverless phishing API.
  ☆29Updated 3 years ago
• torque59 / AWS-Vulnerable-Lambda
  An AWS Lambda vulnerable application written in flask.
  ☆48Updated 7 years ago
• curi0usJack / ansible-redelk
  Ansible playbooks for instrumenting a Red Team environment with RedElk
  ☆47Updated 4 years ago
• MythicAgents / typhon
  Payload designed for targeting Jamf enrolled devices.
  ☆36Updated last year
• nccgroup / cowcloud
  ☆58Updated last year
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆46Updated last year
• moloch-- / electric-scan
  Electron based screenshot scanner
  ☆65Updated last year
• christophetd / aws-sso-device-code-authentication
  ☆25Updated 3 years ago
• PhilKeeble / AWS-RedTeam-ADLab
  ☆111Updated 3 years ago
• sensepost / thumbscr-ews
  Exchangelib wrapper for pentesting
  ☆56Updated 5 months ago
• ZephrFish / AzureAttackKit
  Collection of Azure Tools to Pull down for Attacking an Environment + quick tips and other useful information
  ☆72Updated 2 years ago
• StateFarmIns / CLAWS
  This application was built to help reduce the amount of time it takes to review AWS Lambda code.
  ☆60Updated last week
• Frichetten / aws_stealth_perm_enum
  Research on the enumeration of IAM permissions without logging to CloudTrail
  ☆60Updated 3 years ago
• carlospolop / aws_iam_review
  ☆31Updated last week
• RhinoSecurityLabs / CloudScraper
  CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
  ☆27Updated 2 years ago