Alternatives and similar repositories for red-bucket-gcp

Users that are interested in red-bucket-gcp are comparing it to the libraries listed below

• wiz-sec-public / SITF
  A comprehensive framework for analyzing and defending against attacks targeting Software Development Life Cycle Infrastructure.
  ☆50Updated this week
• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆71Updated 2 years ago
• StateFarmIns / CLAWS
  This application was built to help reduce the amount of time it takes to review AWS Lambda code.
  ☆61Updated last year
• lightspin-tech / red-detector
  Scan your EC2 instance to find its vulnerabilities using Vuls (https://vuls.io/en/)
  ☆89Updated 3 years ago
• KatTraxler / gcpdocs
  Repository to archive GCP Documentation for local use
  ☆16Updated 11 months ago
• Permiso-io-tools / cloudtail
  ☆30Updated 3 weeks ago
• Permiso-io-tools / bucket-shield
  ☆14Updated 3 weeks ago
• kaansk / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆30Updated 11 months ago
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆68Updated 7 months ago
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 4 years ago
• nccgroup / ConMachi
  Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container
  ☆106Updated 7 years ago
• nccgroup / cowcloud
  ☆60Updated 2 years ago
• nccgroup / ccs
  ☆114Updated 2 years ago
• vectra-ai-research / log4j-aws-sandbox
  A set of AWS resources for testing the Log4Shell vulnerability, deployable with terraform
  ☆11Updated 4 years ago
• goldfiglabs / sgCheckup
  sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.
  ☆81Updated 4 years ago
• disruptops / IncidentResponseGenerator
  Updated incident response generator for training classes
  ☆44Updated 4 years ago
• offensive-terraform / offensive-terraform.github.io
  Offensive Terraform Website
  ☆45Updated 5 years ago
• kbroughton / azure_cis_scanner
  Security Scanner based on CIS benchmark 1.1 inspired by Scout2
  ☆54Updated 2 years ago
• cedowens / aws-cli-notes
  A combined list of helpful awscli commands from Scott Piper's flaws.cloud exercise as well as from Beau Bullock's Breaching the Cloud Tra…
  ☆19Updated 4 years ago
• Permiso-io-tools / LogLicker
  Tool for obfuscating and deobfuscating data.
  ☆75Updated last year
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆61Updated 2 years ago
• kerberosmansour / InfoSecOpenAIExamples
  InfoSec OpenAI Examples
  ☆19Updated 2 years ago
• yahoo / SubdomainSleuth
  Scanner to identify dangling DNS records and subdomain takeovers
  ☆49Updated last year
• darkarnium / perimeterator
  'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.
  ☆64Updated 6 years ago
• wiz-sec-public / peach-framework
  PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…
  ☆74Updated 3 years ago
• 3CORESec / Trapdoor
  Serverless honeytoken 🕵🏻‍♂️
  ☆81Updated 3 years ago
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆78Updated 3 years ago
• prisma-cloud / IAMFinder
  IAMFinder enumerates and finds users and IAM roles in a target AWS account.
  ☆111Updated 5 years ago
• Permiso-io-tools / SkyScalpel
  ☆46Updated last year
• mllamazares / STRIDE-vs-ASVS
  🖇️ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.
  ☆76Updated last year