A curated list of cloud pentesting resource, contains AWS, Azure, Google Cloud
☆149May 24, 2022Updated 4 years ago
Alternatives and similar repositories for cloud-penetration-testing
Users that are interested in cloud-penetration-testing are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Cloud Pentesting Resource Collection☆40Apr 18, 2026Updated 2 months ago
- Resources to learn cloud environment and pentesting the same, contains AWS, Azure, Google Cloud☆56Mar 7, 2022Updated 4 years ago
- This repository mainly focuses on various techniques, tools, frameworks and approach to perform offensive exploitation of AWS infrastruct…☆12Jun 12, 2019Updated 7 years ago
- A tool to keep AWS pentests and red teams efficient, organized, and stealthy.☆96Dec 29, 2025Updated 6 months ago
- Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)☆352Mar 4, 2025Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆11Jan 24, 2023Updated 3 years ago
- A collection of resources, tools and more for penetration testing and securing Microsofts cloud platform Azure.☆1,206Dec 27, 2023Updated 2 years ago
- Collection of fuzzing payloads and corpus from all around added as sub modules☆15Mar 26, 2026Updated 3 months ago
- Awesome list for cloud security related projects☆154Oct 4, 2022Updated 3 years ago
- ☆759Aug 26, 2022Updated 3 years ago
- This Repo serves as a collection of shared security and penetration testing resources for the cloud.☆303Jul 21, 2024Updated last year
- Automatically deploy Nemesis☆21Jun 14, 2024Updated 2 years ago
- Here are some common interview questions for an application security position you can review for your own interview, along with example a…☆32Apr 17, 2022Updated 4 years ago
- ☆245Jan 23, 2025Updated last year
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- AzureGoat : A Damn Vulnerable Azure Infrastructure☆946Oct 30, 2024Updated last year
- Exploit for CVE-2024-5009☆13Jul 8, 2024Updated 2 years ago
- Exploits with pwntools library in Python3. ROP, BOF, SHELLCODE.☆20Feb 2, 2024Updated 2 years ago
- ☆35Nov 14, 2024Updated last year
- Wounty is a simple web enumeration script that makes use of other popular tools to automate the early stages of recognition in Bug Bounty…☆14Feb 6, 2022Updated 4 years ago
- Pentesting lab with a Kali Linux instance accessible via ssh & wireguard VPN and with vulnerable instances in a private subnet☆195Jul 4, 2024Updated 2 years ago
- Azure and AWS Attacks☆1,127Nov 25, 2022Updated 3 years ago
- bash script for automating subdomain enumeration process either passive or active☆30Feb 24, 2026Updated 4 months ago
- top usernames from azure survey 2025☆17Apr 25, 2025Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆763Updated this week
- ☆33Aug 25, 2021Updated 4 years ago
- Automating situational awareness for cloud penetration tests.☆2,512May 26, 2026Updated last month
- A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.☆399Jan 10, 2025Updated last year
- Scan websites CSP policies and visualise their vunlnerabilities from a dashboard☆13Mar 11, 2025Updated last year
- Simple website to guess API Key / OAuth Token☆48Aug 29, 2022Updated 3 years ago
- ☆20Apr 28, 2025Updated last year
- Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.☆2,139Oct 1, 2025Updated 9 months ago
- All the code snippets from my Secure Code Review series on youtube (youtube.com/@muqsitbaig)!☆25Jul 28, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆30Jul 21, 2024Updated last year
- Collection of offensive tools targeting Microsoft Azure☆223Apr 1, 2026Updated 3 months ago
- This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage clou…☆2,822Apr 6, 2026Updated 3 months ago
- ☆20May 18, 2022Updated 4 years ago
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆5,262May 19, 2026Updated last month
- FuzzSSH is a free software tool created to detect SSH (protocol) vulnerabilities.☆16Jan 13, 2022Updated 4 years ago
- exfiltration/infiltration toolkit☆23Dec 20, 2023Updated 2 years ago