lmoratti / risky-recordsLinks
Given a list of domains and known IP and buckets that are owned, which might be susceptible to domain hijacking?
☆14Updated 8 months ago
Alternatives and similar repositories for risky-records
Users that are interested in risky-records are comparing it to the libraries listed below
Sorting:
- A meta-database collecting resources that compile lists of breaches☆20Updated 7 months ago
- ☆41Updated 6 months ago
- Determine privileges from cloud credentials via brute-force testing.☆69Updated 9 months ago
- This application was built to help reduce the amount of time it takes to review AWS Lambda code.☆60Updated 6 months ago
- ☆57Updated 2 years ago
- ☆56Updated 2 years ago
- Sniff and attack networks that use IP-in-IP or VXLAN encapsulation protocols.☆21Updated 9 months ago
- A small library to alter AWS API requests; Used for fuzzing research☆22Updated last year
- Repository to archive GCP Documentation for local use☆15Updated 3 months ago
- Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure☆47Updated last year
- ☆36Updated 10 months ago
- A PoC to Simulate Ransomware Attack on AWS Environment☆31Updated 7 months ago
- ☆34Updated 3 years ago
- A combined list of helpful awscli commands from Scott Piper's flaws.cloud exercise as well as from Beau Bullock's Breaching the Cloud Tra…☆19Updated 4 years ago
- Model files for undocumented AWS APIs☆13Updated 11 months ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆41Updated last year
- ☆47Updated 11 months ago
- Fun tools around the EBS Direct API☆18Updated 4 years ago
- A set of AWS resources for testing the Log4Shell vulnerability, deployable with terraform☆12Updated 3 years ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated last year
- ☆12Updated 6 months ago
- A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).☆28Updated 3 months ago
- A steampipe plugin to query projectdiscovery.io tools.☆26Updated 10 months ago
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆108Updated 6 months ago
- This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs☆37Updated 8 months ago
- A catalog of services that can be publicly exposed within different cloud providers.☆14Updated 9 months ago
- TrailAlerts is a AWS-native, serverless cloud-detection tool that lets you define simple rules as code and get rich alerts about events i…☆41Updated last month
- Clean accounts over permissions in GCP infra at scale☆71Updated 2 years ago
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…☆16Updated 11 months ago
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆61Updated 2 years ago