lmoratti / risky-records
Given a list of domains and known IP and buckets that are owned, which might be susceptible to domain hijacking?
☆13Updated 6 months ago
Alternatives and similar repositories for risky-records:
Users that are interested in risky-records are comparing it to the libraries listed below
- A meta-database collecting resources that compile lists of breaches☆18Updated 4 months ago
- A small library to alter AWS API requests; Used for fuzzing research☆22Updated last year
- Fun tools around the EBS Direct API☆18Updated 3 years ago
- A combined list of helpful awscli commands from Scott Piper's flaws.cloud exercise as well as from Beau Bullock's Breaching the Cloud Tra…☆19Updated 4 years ago
- Repository to archive GCP Documentation for local use☆15Updated last month
- A set of AWS resources for testing the Log4Shell vulnerability, deployable with terraform☆12Updated 3 years ago
- ☆15Updated 7 months ago
- ☆38Updated 4 months ago
- Simple tool to identify and remediate the use of the AWS EC2 IMDSv1.☆16Updated 3 years ago
- ☆32Updated 7 months ago
- ☆58Updated last year
- A PoC to Simulate Ransomware Attack on AWS Environment☆30Updated 5 months ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆40Updated last year
- ☆12Updated 4 months ago
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…☆16Updated 9 months ago
- ☆10Updated 2 years ago
- ZAP scripts to implement ASVS L1 checking☆15Updated 2 years ago
- ☆55Updated last year
- Clean accounts over permissions in GCP infra at scale☆71Updated last year
- A GitHub Actions Supply Chain CTF / Goat☆17Updated last month
- AWS SSO serverless phishing API.☆32Updated 3 years ago
- Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters☆14Updated 4 years ago
- Determine privileges from cloud credentials via brute-force testing.☆67Updated 7 months ago
- Security Alert Decoration☆27Updated last week
- A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).☆27Updated last month
- CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.☆15Updated 3 years ago
- This application was built to help reduce the amount of time it takes to review AWS Lambda code.☆60Updated 4 months ago
- ☆29Updated 4 months ago
- A catalog of services that can be publicly exposed within different cloud providers.☆14Updated 6 months ago
- WAF bypass PoC☆46Updated last year